Analysis
-
max time kernel
61s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
12-04-2023 04:16
Static task
static1
Behavioral task
behavioral1
Sample
e2d28337c6b5cd1a59ce016d7ad8bbf27b074a432418f635771ea636de6627b6.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
e2d28337c6b5cd1a59ce016d7ad8bbf27b074a432418f635771ea636de6627b6.exe
Resource
win10v2004-20230220-en
General
-
Target
e2d28337c6b5cd1a59ce016d7ad8bbf27b074a432418f635771ea636de6627b6.exe
-
Size
3.4MB
-
MD5
b6bbb911de1a54e6850715635250272a
-
SHA1
06cab7dba5eea0b9d101fd563367d6e995f050b1
-
SHA256
e2d28337c6b5cd1a59ce016d7ad8bbf27b074a432418f635771ea636de6627b6
-
SHA512
206d7f00bf808444c0c7d70207895bb91a610304cb37e18bd0410b5967fb36082fcd272401ac6c954adbbbe9acf0a4e1d1529d9b20f91b207d2d646d7d5d33ef
-
SSDEEP
98304:5RYCLfUglMCPkyJCz+BaTgyGGotvOnD6GfSM6yh:5aCLd2wz4EfGWvDGfhh
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.