Analysis
-
max time kernel
41s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
-
submitted
05/12/2022, 17:43
General
-
Target
6ffa425ef7a433138e4d24073db262df62ed5e85efa9ee2d2452d465e0a4b087.exe
-
Size
2.6MB
-
MD5
676fe13fe4f63b42aeddef1fff194150
-
SHA1
bb4b13c361071147f779bd13257c393fa9f19fd4
-
SHA256
6ffa425ef7a433138e4d24073db262df62ed5e85efa9ee2d2452d465e0a4b087
-
SHA512
fdb5d0249969bbf9264efd27cc67298a1f5d3957bd184b3f86a992b87bcaf247cdeaf2c84ff67b02cce969f18f8b713472aedebd5932a69c9132ad2fcf031ed4
-
SSDEEP
49152:YBzOLK0AozY51U6bKzVpl8oXzfYNH+kOSMiD2OLMRiHL/x6x5FwDJRzwfkiSsEiK:YBzOu0C06bKzTl8oXzfYAkUiDhdLEx5q
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\6ffa425ef7a433138e4d24073db262df62ed5e85efa9ee2d2452d465e0a4b087.exe"C:\Users\Admin\AppData\Local\Temp\6ffa425ef7a433138e4d24073db262df62ed5e85efa9ee2d2452d465e0a4b087.exe"1⤵
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
8KB