Analysis
-
max time kernel
114s -
max time network
120s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
28/11/2022, 06:22
General
-
Target
3817762fbd3a706062b254abe6e38b0ae139d58697f4b831825c46016a600471.exe
-
Size
3.9MB
-
MD5
9721b6cde59ec301d6bb0547dd3385dd
-
SHA1
f74772fdbef7f080262247fce4e62f633ed0b42f
-
SHA256
3817762fbd3a706062b254abe6e38b0ae139d58697f4b831825c46016a600471
-
SHA512
8c38db54d84e97349179de95dfb98d8385ad5066238295c680555e1f175a29c7fb6f4b2a83f9d79bcf7c721e48dfe2e42de4001f49a13004a8df7655331f4ba7
-
SSDEEP
98304:1KnADUeAln4wn6wJ+FJo94LUMxGlacITBM8u:NCnww+g9+U1GTBw
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\3817762fbd3a706062b254abe6e38b0ae139d58697f4b831825c46016a600471.exe"C:\Users\Admin\AppData\Local\Temp\3817762fbd3a706062b254abe6e38b0ae139d58697f4b831825c46016a600471.exe"1⤵