0a904d48bdc308e8a15c8d58551dbe013dc6c7ec056bc85c7c7519419261f9f8 | Triage

Submit
Reports

Overview

overview

3

Static

static

0a904d48bd...f8.lnk

windows7-x64

3

0a904d48bd...f8.lnk

windows10-2004-x64

3

Analysis

max time kernel
202s
max time network
229s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
30-11-2022 23:10

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0a904d48bdc308e8a15c8d58551dbe013dc6c7ec056bc85c7c7519419261f9f8.lnk

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

0a904d48bdc308e8a15c8d58551dbe013dc6c7ec056bc85c7c7519419261f9f8.lnk

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

0a904d48bdc308e8a15c8d58551dbe013dc6c7ec056bc85c7c7519419261f9f8.lnk
Size

677B
MD5

a0d11a4f378a79a7a620770c88ccb23a
SHA1

63f572827be107650c21710eed9587f630f5449a
SHA256

0a904d48bdc308e8a15c8d58551dbe013dc6c7ec056bc85c7c7519419261f9f8
SHA512

33c2eedcba5dadc878b657c393b4dd836ad834a25a0c539a3d671d9ac3e41773532702c396aaaf2f3e2f8d3c943846e71513a8d9f7bd6e3b4cbb5458e239b5af

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\0a904d48bdc308e8a15c8d58551dbe013dc6c7ec056bc85c7c7519419261f9f8.lnk
1⤵
PID:4140

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy