Overview
overview
7Static
static
1GlyceriaHa...ee.jpg
windows7-x64
3GlyceriaHa...ee.jpg
windows10-2004-x64
3Mainprizer...nd.lnk
windows7-x64
3Mainprizer...nd.lnk
windows10-2004-x64
3StanesBese...ly.cmd
windows7-x64
3StanesBese...ly.cmd
windows10-2004-x64
7StanesBese...ne.jpg
windows7-x64
3StanesBese...ne.jpg
windows10-2004-x64
3chuhraFond...ia.wsf
windows7-x64
3chuhraFond...ia.wsf
windows10-2004-x64
7chuhraFond...le.exe
windows7-x64
chuhraFond...le.exe
windows10-2004-x64
1Analysis
-
max time kernel
139s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
24-03-2023 11:23
Static task
static1
Behavioral task
behavioral1
Sample
GlyceriaHaberdine/possessinglyBingee.jpg
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
GlyceriaHaberdine/possessinglyBingee.jpg
Resource
win10v2004-20230221-en
Behavioral task
behavioral3
Sample
MainprizerMisapprehendSeastrand.lnk
Resource
win7-20230220-en
Behavioral task
behavioral4
Sample
MainprizerMisapprehendSeastrand.lnk
Resource
win10v2004-20230220-en
Behavioral task
behavioral5
Sample
StanesBeseeches/Inquisitorially.cmd
Resource
win7-20230220-en
Behavioral task
behavioral6
Sample
StanesBeseeches/Inquisitorially.cmd
Resource
win10v2004-20230220-en
Behavioral task
behavioral7
Sample
StanesBeseeches/Pseudoconhydrine.jpg
Resource
win7-20230220-en
Behavioral task
behavioral8
Sample
StanesBeseeches/Pseudoconhydrine.jpg
Resource
win10v2004-20230220-en
Behavioral task
behavioral9
Sample
chuhraFondled/longeveEctocondyle/UndersortPodalgia.wsf
Resource
win7-20230220-en
Behavioral task
behavioral10
Sample
chuhraFondled/longeveEctocondyle/UndersortPodalgia.wsf
Resource
win10v2004-20230220-en
Behavioral task
behavioral11
Sample
chuhraFondled/longeveEctocondyle/glycuresisPortionable.exe
Resource
win7-20230220-en
Behavioral task
behavioral12
Sample
chuhraFondled/longeveEctocondyle/glycuresisPortionable.exe
Resource
win10v2004-20230220-en
General
-
Target
StanesBeseeches/Pseudoconhydrine.jpg
-
Size
78KB
-
MD5
5881ee2e28cef6740d54a91440635418
-
SHA1
afab673fa3d08dc2233de3252f6bb4d43aec501f
-
SHA256
b6b5c4cd67b2f09b41b8ee05268669d9e8866db852442678820c12e11635f4fa
-
SHA512
2f4e03684a514b8dbda694e56173ec973e9770ffa00bbbf1b9c4eac79d26772083a6cd9dd13cc0fb8f09ea0e8ad345514cf97aeb8c99a8482d3c86f94b06ec75
-
SSDEEP
1536:80Kf42e0LjLZ4bjUHz5L1YVcNkKzfh/W+SyVm6aNyK0jwJ:2f4r0L3YUHh1YVcNkGxA7b0jwJ
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.