Analysis
-
max time kernel
164s -
max time network
186s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
01/12/2022, 10:47
General
-
Target
976e6989b44bde89090de604cb856128b158a83eddbdcf34115c0b3e68be0c92.exe
-
Size
4.2MB
-
MD5
1f06e8241b23ea4b8d201fe24a226297
-
SHA1
3af0e57f43026a9a06e55f5c8ab8f57028179b21
-
SHA256
976e6989b44bde89090de604cb856128b158a83eddbdcf34115c0b3e68be0c92
-
SHA512
29639a9e66217f3afc71e89b61d5a1fbaa77a5abb85dd45402e4fcf46a5aec2b47c531b67698fc7274ecb111b4d27452bdace90892674a0a8f11f3b28133b280
-
SSDEEP
98304:fziRRJruXmuiaT5a45SOmnL0YH/f5jsKZo4ZvygUT/yqlm6+:Li5rMT5ahnLRVsAo4ZvyZTjK
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\976e6989b44bde89090de604cb856128b158a83eddbdcf34115c0b3e68be0c92.exe"C:\Users\Admin\AppData\Local\Temp\976e6989b44bde89090de604cb856128b158a83eddbdcf34115c0b3e68be0c92.exe"1⤵