7bf0b965ec5cff9ddb705ab622c65830c071c4213c74d7ffd42f21cb4eea32c5 | Triage

Resubmissions

24-03-2023 21:02

230324-zvxzhshd37 3

24-03-2023 20:59

230324-zs89rsbe3x 6

Analysis

max time kernel
28s
max time network
31s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
24-03-2023 21:02

Sharing

Report Analysis Logs

General

Target

Borderless Gaming.lnk
Size

746B
MD5

c7d7a3bebbcdcc224094a2eb6b04e893
SHA1

0caa42a9e3d2315de4721b97096355f7a7c61ea6
SHA256

7bf0b965ec5cff9ddb705ab622c65830c071c4213c74d7ffd42f21cb4eea32c5
SHA512

1cd7b2486b684fbfc0901f8cc85d93e022f147c4586a7ea2c225914905ed1733943b19f2dd87e235887c58579cbd5f17abaaab3d753f323212c99ec7db040308

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Borderless Gaming.lnk"
1⤵
PID:1992

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads