Analysis
-
max time kernel
144s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
06/11/2022, 04:47
General
-
Target
b174ad87570cf3f3b6d58ed65e40915706768cf2d0e79c6118da213be187c5c3.exe
-
Size
560KB
-
MD5
3b0f140c53468e56696a05842d89ade0
-
SHA1
00a2ab76fcef59df876990e37dae1643c6905726
-
SHA256
b174ad87570cf3f3b6d58ed65e40915706768cf2d0e79c6118da213be187c5c3
-
SHA512
67dda5a4c15d99dd57b0a530f0d1d6c052548ff45fa9dab8ccd9d9b1071b84008510bfccf566bd2033058e2d642892eb569efa39b2761bcfb626c975a043c6d3
-
SSDEEP
12288:s2uBhqfd/lBzrOLF+ZPPfnEUnsEWfXshAJ66q82jCGkcIWpwCGqRaMG:sBqV/flvANchAJsCGkipwCDwMG
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\b174ad87570cf3f3b6d58ed65e40915706768cf2d0e79c6118da213be187c5c3.exe"C:\Users\Admin\AppData\Local\Temp\b174ad87570cf3f3b6d58ed65e40915706768cf2d0e79c6118da213be187c5c3.exe"1⤵