Overview
overview
10Static
static
852c03506-a...92.eml
windows7-x64
552c03506-a...92.eml
windows10-2004-x64
3Electronic...23.zip
windows7-x64
1Electronic...23.zip
windows10-2004-x64
1Electronic...23.doc
windows7-x64
10Electronic...23.doc
windows10-2004-x64
10email-html-1.html
windows7-x64
1email-html-1.html
windows10-2004-x64
1image001.png
windows7-x64
3image001.png
windows10-2004-x64
3Analysis
-
max time kernel
147s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
15-03-2023 05:15
Behavioral task
behavioral1
Sample
52c03506-a7da-5b88-f72d-0d619d687292.eml
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
52c03506-a7da-5b88-f72d-0d619d687292.eml
Resource
win10v2004-20230220-en
Behavioral task
behavioral3
Sample
Electronic form Dt 03.07.2023.zip
Resource
win7-20230220-en
Behavioral task
behavioral4
Sample
Electronic form Dt 03.07.2023.zip
Resource
win10v2004-20230220-en
Behavioral task
behavioral5
Sample
Electronic form Dt 03.07.2023.doc
Resource
win7-20230220-en
Behavioral task
behavioral6
Sample
Electronic form Dt 03.07.2023.doc
Resource
win10v2004-20230220-en
Behavioral task
behavioral7
Sample
email-html-1.html
Resource
win7-20230220-en
Behavioral task
behavioral8
Sample
email-html-1.html
Resource
win10v2004-20230220-en
Behavioral task
behavioral9
Sample
image001.png
Resource
win7-20230220-en
Behavioral task
behavioral10
Sample
image001.png
Resource
win10v2004-20230220-en
General
-
Target
image001.png
-
Size
6KB
-
MD5
93328012727d7dd99dfffabf0c38f1be
-
SHA1
9bceb41c873ed8cd1ec8df89b9ba96a04f9143d1
-
SHA256
27a694d87cba73ef5b422cba1505064ac77118285cd79b8139de389ee0cd88b9
-
SHA512
6f73acf078a5f71c03feda89f4376d1f863b790a19731987c8b4f6a8c601e40518bff6056d73b13a147186cf479fd36a7292b0f463727882db04e787f54d9fd0
-
SSDEEP
192:XvNg5Whf3QdTGFq7ty/bWuduP7WVo/YZa33P:Vg5Whf3QhvtybdO7WCQYP
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.