71c3f08a8e4241794f652cfd3f49807ba17db851aa64ddfb8569428b90af52ec | Triage

Submit
Reports

Overview

overview

4

Static

static

1

Encuesta d...te.eml

windows10-2004-x64

4

email-html-2.html

windows10-2004-x64

1

email-plain-1.txt

windows10-2004-x64

1

survey_es_final.png

windows10-2004-x64

3

Analysis

max time kernel
70s
max time network
83s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
21/03/2023, 22:50

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Encuesta de Satisfaccion al Cliente.eml

Resource

win10v2004-20230220-en

windows10-2004-x64

13 signatures

600 seconds

Behavioral task

behavioral2

Sample

email-html-2.html

Resource

win10v2004-20230220-en

windows10-2004-x64

8 signatures

600 seconds

Behavioral task

behavioral3

Sample

email-plain-1.txt

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

600 seconds

Behavioral task

behavioral4

Sample

survey_es_final.png

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

600 seconds

Report Analysis Logs

General

Target

survey_es_final.png
Size

727KB
MD5

a6e4526edd438d372628eb1063dc93ae
SHA1

5b1992027d4ba149abbfc67ad8871f75b8f8aff5
SHA256

a93ab614bce9c768d8bd1508a4a3502264c143138f4c5aa16de930456b351b7a
SHA512

00f42298832208b02d88e1f99124ac680c46c7c0319837d50c1bd66101992861379b410f898e10ea897eb117b2c2f57e3d68e689ee409b9733a8d92293e84dca
SSDEEP

12288:uM1K4H5seZx54QJrKoGQt9o6xqCKX/XzDmXSHdI6sj6l0zbghA2re7KbE9CyaT9O:RQ4LNJrTPxGvfgeIdcxgvaT9fG

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\survey_es_final.png
1⤵
PID:3592

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy