Analysis
-
max time kernel
374s -
max time network
438s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
-
submitted
29/11/2022, 11:48
General
-
Target
fbd7db4b00099460c9065cedee17cb96477e79c208cf619cff89acefab8686f3.exe
-
Size
274KB
-
MD5
78087403f78128998e3a7684a5047b33
-
SHA1
d32a732e0c937b6ddb1545d4f0f06a987576458b
-
SHA256
fbd7db4b00099460c9065cedee17cb96477e79c208cf619cff89acefab8686f3
-
SHA512
103d1f09a4598ca47651f6643c9816e17065a53c27fa4e1140850a78341c1480953abf7a4e6ba3fca0141d6ab1de23583e547ea0df99e83bd953da1667c49059
-
SSDEEP
6144:KsaocyLCecZlqjELW+5MrJo7U2vxrLvlSuMlQLsUk97BFVgWEkBXPbdZ33:Ktob4GAWmrRZ6QAd9dFVMOXPbdZH
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\fbd7db4b00099460c9065cedee17cb96477e79c208cf619cff89acefab8686f3.exe"C:\Users\Admin\AppData\Local\Temp\fbd7db4b00099460c9065cedee17cb96477e79c208cf619cff89acefab8686f3.exe"1⤵