0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718 | Triage

Submit
Reports

Overview

overview

Static

static

0f543dd435...18.exe

windows7-x64

3

0f543dd435...18.exe

windows10-2004-x64

3

Analysis

max time kernel
125s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
24-11-2022 13:39

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718.exe
Size

18KB
MD5

a81b0019b91882997f5aaf3db8a93a8f
SHA1

55b71169a1b2bb52edf5ded115d3a97348d64411
SHA256

0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718
SHA512

8521a4f6c49826619fc40f5bf0c0e7bba08f437a51b958e2d7f3b7b3c64e676fbc854f55be3ee8f734badc8f976b42ba52dfcd81ddb52fd8bedff170671981fb
SSDEEP

384:ARdCy1MqlWM4mQ2eJlSFuKZNExpmXBaODXQ:kCyCqlP4mQ/Dsu88O0

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718.exe
"C:\Users\Admin\AppData\Local\Temp\0f543dd435e790ad056dfcb0955a0f1fb7c5a0b0b6d4081273be28b106ae0718.exe"
1⤵
PID:4708

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy