Analysis
-
max time kernel
183s -
max time network
190s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
-
submitted
27-11-2022 04:26
General
-
Target
3f9336bebd30ab55479e14c4c2a9e88224bdcc67513e1c800cd196a1d61f8d8e.exe
-
Size
841KB
-
MD5
3c96ce453f5e00fde7cfb5f357a302a7
-
SHA1
f7cf7e76ea5c71525e33f762a001168a476e0b80
-
SHA256
3f9336bebd30ab55479e14c4c2a9e88224bdcc67513e1c800cd196a1d61f8d8e
-
SHA512
515827c5ef452ff55624705738a48dfad8896c50ca029dd9302a1ca0dbaf9adba65e45af4559547bf09cf34b58e12091adb34f0c8242f8c917d5b79a1241db56
-
SSDEEP
24576:mdpvwoMgAwTO+GkIbjBrxeP7fwMGZtc4ekX690:mdJNa6zf4ekq90
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\3f9336bebd30ab55479e14c4c2a9e88224bdcc67513e1c800cd196a1d61f8d8e.exe"C:\Users\Admin\AppData\Local\Temp\3f9336bebd30ab55479e14c4c2a9e88224bdcc67513e1c800cd196a1d61f8d8e.exe"1⤵