166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049 | Triage

Submit
Reports

Overview

overview

3

Static

static

1

166d53296b...49.exe

windows7-x64

3

166d53296b...49.exe

windows10-2004-x64

3

Analysis

max time kernel
164s
max time network
196s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
29-11-2022 10:30

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049.exe
Size

177KB
MD5

ef9afe9f41557e80f6091790ec30dc06
SHA1

83e60c54a720e39740420990c79d1dca480d8676
SHA256

166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049
SHA512

522020ef8e391e977297585da846bde5382a9edd29a45ff8ae1689041346071c6baa6702eef59c24b629f31b07d1f1d8ab2474a84d6df2da9a0e14254db0ccc3
SSDEEP

3072:NQIURTXJIu5gfDQWDBPFiuNFxCbPcqhncoij8a/RCk326LhyYd8FPKHT16V2RIa:NsGu5/uNXCvhncoij8aYq2A0YqFPKHIW

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049.exe
"C:\Users\Admin\AppData\Local\Temp\166d53296b843206bdae05aaf9c84c368d8087d7678cf375b1b68755204a4049.exe"
1⤵
PID:536

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy