1d3ec9cc32e182fdca13de069d4e2681a053b286f0773fbd894627bff6ab70e8 | Triage

Analysis

max time kernel
52s
max time network
60s
platform
windows10-1703_x64
resource
win10-20220812-en
resource tags

arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
submitted
21-11-2022 02:15

Sharing

Report Analysis Logs

General

Target

unfeignedness_sitiophobia.png
Size

135KB
MD5

49524219dbd2418e3afb4e49e5f1805e
SHA1

b8cb71c48a7d76949c93418ddd0bcae587bef6cc
SHA256

c6294ebb7d2540ee7064c60d361afb54f637370287983c7e5e1e46115613169a
SHA512

9e7d9e9131557608bb7b517d9bfce5448c990bd685e3b0697c33faa313cbec3c2fef7d0bf3a52e9e9d0e9b6fe901e751780e1cd08a90d331375522299d66453e
SSDEEP

3072:iUyUgVDN5qpYaAGXk7W+fJOUMRc7LLMzJ2DlcBryiXS41L:iUybNmbA4k7pIp6vLMoimii4l

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\unfeignedness_sitiophobia.png
1⤵
PID:2660

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads