Overview

overview

10

Static

static

bd15fbece8...7f.exe

windows7-x64

10

bd15fbece8...7f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    331s
  • max time network
    381s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/11/2022, 17:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd15fbece8e5adb32d3fc1fc9b8ca175a48c6eeb454e0448fb4f78f4a4625d7f.exe

  • Size

    224KB

  • MD5

    d67092679e7de2994a19fecbf7ee85e5

  • SHA1

    6fcbcbc4c90a356a948824a3ec178d8d1488777b

  • SHA256

    bd15fbece8e5adb32d3fc1fc9b8ca175a48c6eeb454e0448fb4f78f4a4625d7f

  • SHA512

    101c88676c94abdecfb30a18d6d0a1be84efe6ea1aa368945c4d128842e559b5b5a53ec76309a5230b4a60e9a36971b12cfd6a70cff6b9df47377ac04dc637fb

  • SSDEEP

    3072:789MwCi4hB2TN/KYwSe9imGrbzn+3ZuC3QUlRdSwfMWDUAe:789MwCi4hB2TN/KYU9FGy3Zu0gd

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bd15fbece8e5adb32d3fc1fc9b8ca175a48c6eeb454e0448fb4f78f4a4625d7f.exe
    "C:\Users\Admin\AppData\Local\Temp\bd15fbece8e5adb32d3fc1fc9b8ca175a48c6eeb454e0448fb4f78f4a4625d7f.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:900

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads