f0a483652457a70fbcf19a0a26d46fcad3d231cc855a21565f5fff0e7a5d8b61 | Triage

Submit
Reports

Overview

overview

Static

static

RFQ-033031...10.exe

windows7_x64

RFQ-033031...10.exe

windows10_x64

ZPicture-1...eg.jpg

windows7_x64

1

ZPicture-1...eg.jpg

windows10_x64

3

Analysis

max time kernel
36s
max time network
34s
platform
windows7_x64
resource
win7-en-20210920
submitted
20-10-2021 00:22

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

RFQ-033031-GCMGULF-SPS-19-10.exe

Resource

win7-en-20210920

agenttesla collection keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

RFQ-033031-GCMGULF-SPS-19-10.exe

Resource

win10-en-20211014

agenttesla collection keylogger spyware stealer trojan

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg

Resource

win7-en-20210920

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg

Resource

win10-en-20211014

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg
Size

72KB
MD5

3588fce20df35048424d65641c8142cf
SHA1

17adecd4dbbbc7029ee9fc19ab47e7585fab39e5
SHA256

7f3afc7117629cdcf612432295be5683c9f611a266acbfccb2eb1d7b75b0fb2d
SHA512

8542ef9c89eb694390e7633bd57fa64f8721f47a4d9de036d0282fdd72204c05b33145fe7563d1fca927569cd5e0a88bef555478f8d31e133e9e57eb7f32ccb1

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen "C:\Users\Admin\AppData\Local\Temp\ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg"
1⤵
PID:1872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1872-54-0x000007FEFC2C1000-0x000007FEFC2C3000-memory.dmp

Filesize
8KB

Download

© 2018-2024

Terms | Privacy