Resubmissions
04-04-2023 14:55
230404-sat9kahf41 1004-04-2023 06:43
230404-hgwe4add44 304-04-2023 06:23
230404-g5g2yadc88 10Analysis
-
max time kernel
1548s -
max time network
1586s -
platform
windows10-2004_x64 -
resource
win10v2004-20230221-en -
resource tags
arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system -
submitted
04-04-2023 14:55
Static task
static1
Behavioral task
behavioral1
Sample
efpECSqc_400x400.jpg
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
efpECSqc_400x400.jpg
Resource
win10v2004-20230221-en
General
-
Target
efpECSqc_400x400.jpg
-
Size
24KB
-
MD5
f25f1e1ba2a9ae2b8b2a04f59c6f1fba
-
SHA1
443e83954f126bb7d9bd254dbc78a1e485251f84
-
SHA256
43813f447ef4f6de67121b8362aa0deb6b2988f30b029fd388a4f3e4cecdaa4f
-
SHA512
8bb797a81d58f9f0d4b90dab4fbf574c7e987be8f1548e4c12614d20a380e42d8772ba93b25afc2879ad76895458b5b582df6ba93b255ac20178df81cc8c03ed
-
SSDEEP
384:sp74ew3VdEkaldx6axzzWlMfl2jxd4ZVYx1O7CzDnovOKzDHPl:GEjldLalH6aF8cVYqCzGfd
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.