Analysis
-
max time kernel
91s -
max time network
105s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
01-11-2022 21:50
General
-
Target
92cb35c1bebb8516e766d0126ec07f3dad6d551584f233a59cb21b3b18913287.exe
-
Size
792KB
-
MD5
5c47ed9fbb009e76f6a77a061f721175
-
SHA1
29daff883c2a2c200ead18ba15d51a57b037cae6
-
SHA256
92cb35c1bebb8516e766d0126ec07f3dad6d551584f233a59cb21b3b18913287
-
SHA512
78b3a712fb24b08649fd409b81516520ec9a87b2852094cd6baa7f1ed5e480b9a2ae1094ac5b6ef08c407e0c959ff503f0aea127cf5484349f45429aaee53e47
-
SSDEEP
12288:hKtQl7yzGiiOuu5UrNtIHqFp8c3eZ7APtSnKb:hKtMbIHq0c3exAUKb
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\92cb35c1bebb8516e766d0126ec07f3dad6d551584f233a59cb21b3b18913287.exe"C:\Users\Admin\AppData\Local\Temp\92cb35c1bebb8516e766d0126ec07f3dad6d551584f233a59cb21b3b18913287.exe"1⤵