4db309f7a559ee5b30282633c034261b61ec532d8c5698c0aacb980eab8b928b | Triage

Submit
Reports

Overview

overview

3

Static

static

4db309f7a5...8b.lnk

windows7-x64

3

4db309f7a5...8b.lnk

windows10-2004-x64

3

Analysis

max time kernel
145s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
06-11-2022 10:28

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4db309f7a559ee5b30282633c034261b61ec532d8c5698c0aacb980eab8b928b.lnk

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

4db309f7a559ee5b30282633c034261b61ec532d8c5698c0aacb980eab8b928b.lnk

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

4db309f7a559ee5b30282633c034261b61ec532d8c5698c0aacb980eab8b928b.lnk
Size

252B
MD5

314902a7484aa1eb73298fd32534c9b3
SHA1

7de8a909c0f6467ffb26528ca69007f91636a9e0
SHA256

4db309f7a559ee5b30282633c034261b61ec532d8c5698c0aacb980eab8b928b
SHA512

b9ad45baaf579537fc3373d78df44e78c2ad3c914c75d2de542430d0f977f1fcd841440314313b8fe68c40211bc5d56873ab86aeacce7c7d9c859d31082e594b

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\4db309f7a559ee5b30282633c034261b61ec532d8c5698c0aacb980eab8b928b.lnk
1⤵
PID:2620

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy