Analysis
-
max time kernel
325s -
max time network
378s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
25-11-2022 17:56
Behavioral task
behavioral1
Sample
336a249bda43407d07224df240527e20.exe
Resource
win7-20220812-en
13 signatures
150 seconds
Behavioral task
behavioral2
Sample
336a249bda43407d07224df240527e20.exe
Resource
win10v2004-20221111-en
1 signatures
150 seconds
General
-
Target
336a249bda43407d07224df240527e20.exe
-
Size
1.1MB
-
MD5
336a249bda43407d07224df240527e20
-
SHA1
a9961ae2b655afa49f36ed560c6608cd287bf19c
-
SHA256
edbbe316a6a4b3f6a59810698d5b41197b01179c52b38c55cddb520b2d699ea9
-
SHA512
35a723ea92e5be03a4015cc3aca2f6f9de466c0c187386344ecbe7afbb5932da6e37473b2c2c7f88dad5ad0e52f738dbbe30e742910c7a950626f5e380ad60b4
-
SSDEEP
24576:2RBrzwX0YmJI8DRnCD4jtnT8Q1r0ly78ipwR7H:wJzdnm4lT8Q1r0pieR7H
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.