f7b7b60e1af0c608e5e95f45e63efd24a34227811eefa77871505ff0d0208cda | Triage

Analysis

max time kernel
51s
max time network
147s
platform
windows10-1703_x64
resource
win10-20220812-en
resource tags

arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
submitted
12-01-2023 17:23

Sharing

Report Analysis Logs

General

Target

Resources/Icons/Logo/Logo.jpg
Size

26KB
MD5

c6099a79ca221e51398757b6164a8f17
SHA1

77becc1c68fdd97550a8fb6162a86b03cef8344f
SHA256

204b258904320951c7438e4360ef2b567a3505a397f912edffb30398e34f1ec9
SHA512

27bf3575ea68314ae39ee5adca196d1b999c76869b929054ba86ac8d157b90eeedb340925339ebe84457b0f2597ec494d97cd8e5eae25c51dda095c8a28fa8fd
SSDEEP

384:LJwDyOFAvYj7crXBurCP0tnnCIhgwrZ8tb/xibWXYsCCiRdfqJfDG4NS:LJwDFAvOYQkbSoRCNRkfPNS

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Resources\Icons\Logo\Logo.jpg
1⤵
PID:1756

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...