General
-
Target
IMG_20230516_073222.jpg
-
Size
218KB
-
Sample
230602-qlks6abe67
-
MD5
8598b35f0761b67743707f700f2fce3f
-
SHA1
f0cff7f09ebc1ecfaf83972f1dc09e5ae63f2f85
-
SHA256
4ca41e28de4bc71f094ceb83f208c33103130bff2f0e250a88f4f925bb232ea4
-
SHA512
1fe1e6190742de627055d975449c4da4c2bd13ba5d5f5d408ae424e233b9894281848d1444b955c606dcb653d5c9a300080ff5b4fa5e1ef1d9095c9c22626cce
-
SSDEEP
6144:/G/Lf6c581nvJkoeRE4YQIv7iQuLTJOmyj37cU3:/0rULkvREGIv7zWTJOh37
Static task
static1
Behavioral task
behavioral1
Sample
IMG_20230516_073222.jpg
Resource
win10-20230220-en
Malware Config
Extracted
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\@Please_Read_Me@.txt
wannacry
115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn
Targets
-
-
Target
IMG_20230516_073222.jpg
-
Size
218KB
-
MD5
8598b35f0761b67743707f700f2fce3f
-
SHA1
f0cff7f09ebc1ecfaf83972f1dc09e5ae63f2f85
-
SHA256
4ca41e28de4bc71f094ceb83f208c33103130bff2f0e250a88f4f925bb232ea4
-
SHA512
1fe1e6190742de627055d975449c4da4c2bd13ba5d5f5d408ae424e233b9894281848d1444b955c606dcb653d5c9a300080ff5b4fa5e1ef1d9095c9c22626cce
-
SSDEEP
6144:/G/Lf6c581nvJkoeRE4YQIv7iQuLTJOmyj37cU3:/0rULkvREGIv7zWTJOh37
Score10/10-
Downloads MZ/PE file
-
Modifies file permissions
-
Legitimate hosting services abused for malware hosting/C2
-