Analysis
-
max time kernel
173s -
max time network
203s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
05-12-2022 20:58
General
-
Target
d1015aa84cb0c60a514cfafff858036d099a4af83b7b78470e89a763d01beb39.exe
-
Size
4.1MB
-
MD5
da7d3e4bf0b4ecfa283a5c3177a9df4f
-
SHA1
fced72f29b2cbe3ba9acd5453144e1ecb4329dd2
-
SHA256
d1015aa84cb0c60a514cfafff858036d099a4af83b7b78470e89a763d01beb39
-
SHA512
4c69ebcfe4c1794c82c6fc49e552b3ee50074c35978b2cfb523e2f8de275527b1b4f8f3790ec58bf332c6782bcc5a9a6876c88628b902289adeba92276e515ac
-
SSDEEP
98304:lnj3kfxoA9pzS/f5B34ET9cHb1j8t70tx54zectQ4ghCnWDH:lnj3OtS/f5BoEZcHbl8t7+x54yviWDH
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\d1015aa84cb0c60a514cfafff858036d099a4af83b7b78470e89a763d01beb39.exe"C:\Users\Admin\AppData\Local\Temp\d1015aa84cb0c60a514cfafff858036d099a4af83b7b78470e89a763d01beb39.exe"1⤵