Analysis
-
max time kernel
142s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
09-01-2023 20:19
General
-
Target
fb7f3b2de023b667b089216ed8d821f7faec9da782fcfbac3693dfe23c50594d.exe
-
Size
6.0MB
-
MD5
c72944ef34d4da29055ae71c03617f11
-
SHA1
bf0fec43c24000d84602830e267223484a7d4d8f
-
SHA256
fb7f3b2de023b667b089216ed8d821f7faec9da782fcfbac3693dfe23c50594d
-
SHA512
af210933bc107bbeaa40796028e7029a9076fa7bace46886610c6856ec502b81f38853f82da1b91a2c378ec095a2fcc66752a2f4d7fb761376c26a034f3113be
-
SSDEEP
196608:6t8GafxYlX0U5HoxeUT4kHntH0uiWNtKGlPeNSoAbxQ:tGwx+XNI7MkHnl0Dqlvbu
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\fb7f3b2de023b667b089216ed8d821f7faec9da782fcfbac3693dfe23c50594d.exe"C:\Users\Admin\AppData\Local\Temp\fb7f3b2de023b667b089216ed8d821f7faec9da782fcfbac3693dfe23c50594d.exe"1⤵