Analysis
-
max time kernel
120s -
max time network
122s -
platform
windows10_x64 -
resource
win10-en-20211014 -
submitted
20-10-2021 00:22
Static task
static1
Behavioral task
behavioral1
Sample
RFQ-033031-GCMGULF-SPS-19-10.exe
Resource
win7-en-20210920
Behavioral task
behavioral2
Sample
RFQ-033031-GCMGULF-SPS-19-10.exe
Resource
win10-en-20211014
Behavioral task
behavioral3
Sample
ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg
Resource
win7-en-20210920
Behavioral task
behavioral4
Sample
ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg
Resource
win10-en-20211014
General
-
Target
ZPicture-1- 2021-10-19 at 2.24.57 PM.jpeg.jpg
-
Size
72KB
-
MD5
3588fce20df35048424d65641c8142cf
-
SHA1
17adecd4dbbbc7029ee9fc19ab47e7585fab39e5
-
SHA256
7f3afc7117629cdcf612432295be5683c9f611a266acbfccb2eb1d7b75b0fb2d
-
SHA512
8542ef9c89eb694390e7633bd57fa64f8721f47a4d9de036d0282fdd72204c05b33145fe7563d1fca927569cd5e0a88bef555478f8d31e133e9e57eb7f32ccb1
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.