Analysis
-
max time kernel
58s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
03/11/2022, 21:59
Static task
static1
Behavioral task
behavioral1
Sample
0d7bcb197f0cd7c2c8a4ee3184c99976d6b04a2309b4d2b314d48fc90510ff3c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
0d7bcb197f0cd7c2c8a4ee3184c99976d6b04a2309b4d2b314d48fc90510ff3c.exe
Resource
win10v2004-20220901-en
General
-
Target
0d7bcb197f0cd7c2c8a4ee3184c99976d6b04a2309b4d2b314d48fc90510ff3c.exe
-
Size
15.7MB
-
MD5
cfd56e37d0e1a0412a48123629301335
-
SHA1
b752ab7221da01dd9a95c1623ec4e5aef4abdc1a
-
SHA256
0d7bcb197f0cd7c2c8a4ee3184c99976d6b04a2309b4d2b314d48fc90510ff3c
-
SHA512
8af981510fdaaee973263688edc97fb5ea20914468f5f78bf1004b46468e34b0787a69f09cabaa6207de89faea5a746b967e4f80a8d98d21217e4a5a970e7c15
-
SSDEEP
393216:avrQjlv9hVJeHwch9ZwTtjT0EXRh+nmLlfvrjePYPXU+KI:avrczEwZv0QOAfOA/zN
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.