Analysis
-
max time kernel
44s -
max time network
87s -
platform
windows7_x64 -
resource
win7-20220901-en -
resource tags
-
submitted
05-12-2022 05:45
General
-
Target
9ec48352a3dd47bb188a82425b3b4db10d11e8dfa55ca5fdf5eedd780977f106.exe
-
Size
310KB
-
MD5
025c9716a91e86b1670894dca2f65d0c
-
SHA1
387d1bb02c509e406763fec855335e20ef40563b
-
SHA256
9ec48352a3dd47bb188a82425b3b4db10d11e8dfa55ca5fdf5eedd780977f106
-
SHA512
0b4f156248ddba8297fcb602c15515bfd19ac4bf8c5d1a13a187563f184dd3319a542144e689fa2473128bdc908ae7a4aec250a7fa622ed26076a0c37494c151
-
SSDEEP
6144:Pq2GfvTNvQH8AJNy/ESafUYCp/iRWUDmx2gJGp5NeqXCVk:RkTNvQQESWUYCpa3Dm3GpPXCS
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
-
NTFS ADS 1 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\9ec48352a3dd47bb188a82425b3b4db10d11e8dfa55ca5fdf5eedd780977f106.exe"C:\Users\Admin\AppData\Local\Temp\9ec48352a3dd47bb188a82425b3b4db10d11e8dfa55ca5fdf5eedd780977f106.exe"1⤵
- NTFS ADS
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
8KB