Analysis

  • max time kernel
    252s
  • max time network
    353s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    01-12-2022 05:59

General

  • Target

    exe.ransomware.babuk/08/99/29/089929F1CDE37E9FD14DD09A7844272678AC48E47887EDE23B561D156FE50057/08992.exe

  • Size

    68KB

  • MD5

    ca8f16095de5ba8a08b1feb119eac680

  • SHA1

    7644cb98ba41682021727232b547d2712419490e

  • SHA256

    089929f1cde37e9fd14dd09a7844272678ac48e47887ede23b561d156fe50057

  • SHA512

    d4dc713f02f191faab71b9b5122ef5992632e712de1c5c3b2a36ab919cb45048ed8981fc95624aee1be05579ec8e3f18a9ba47b33f8ae31d150efb0930c6f705

  • SSDEEP

    1536:yohF6+Kmq1sAFmDR3zzLssrQLOJgY8ZZP8LHD4XWaNH71dLdG1iiFM2iG2pyqMsi:yQY+KmqOAADR3zcsrQLOJgY8Zp8LHD4G

Score
3/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\exe.ransomware.babuk\08\99\29\089929F1CDE37E9FD14DD09A7844272678AC48E47887EDE23B561D156FE50057\08992.exe
    "C:\Users\Admin\AppData\Local\Temp\exe.ransomware.babuk\08\99\29\089929F1CDE37E9FD14DD09A7844272678AC48E47887EDE23B561D156FE50057\08992.exe"
    1⤵
      PID:1648

    Network

    MITRE ATT&CK Enterprise v6

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1648-54-0x0000000076711000-0x0000000076713000-memory.dmp

      Filesize

      8KB