80dad38de1680b4eac876d909986ca1bab122f1df14a3a3f7484de96ee315101 | Triage

Submit
Reports

Overview

overview

5

Static

static

1

Attached P...ml.msg

windows7-x64

5

Attached P...ml.msg

windows10-2004-x64

3

image001.png

windows7-x64

3

image001.png

windows10-2004-x64

3

Resubmissions

06/07/2023, 12:19

230706-pg5r4aag76 6

06/07/2023, 12:15

230706-pe675sca9v 5

06/07/2023, 10:40

230706-mqjj4sbd6y 6

Analysis

max time kernel
790s
max time network
1124s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
06/07/2023, 12:15

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Attached PDF Document for payment.eml.msg

Resource

win7-20230703-en

windows7-x64

10 signatures

1200 seconds

Behavioral task

behavioral2

Sample

Attached PDF Document for payment.eml.msg

Resource

win10v2004-20230703-en

windows10-2004-x64

3 signatures

1200 seconds

Behavioral task

behavioral3

Sample

image001.png

Resource

win7-20230703-en

windows7-x64

2 signatures

1200 seconds

Behavioral task

behavioral4

Sample

image001.png

Resource

win10v2004-20230703-en

windows10-2004-x64

1 signatures

1200 seconds

Report Analysis Logs

General

Target

image001.png
Size

191KB
MD5

16890c38cf5dfff1dbb903e6084e1ec0
SHA1

8e5b96acc74ede86d4aef9b67300780d7d4c2c6c
SHA256

a4a45cab9fff1d9d4e3d3f19a9906e9b60a7831237572162320204e5aa850053
SHA512

388ea3b588e32147a2d04fe8e87d741cdca17751e0080355b7f45b2e9214baba7f03e7d188ddbf401eec31f6a1a086be951fe6595141eb417476619d33cc7045
SSDEEP

3072:tocLDs0BzvZNDwskkRUYwGxs4QAOrBJUDlnMUkWONXdZT7hEksCNSDjas+OlcSoa:xHs0BzfwsaGxzOJUDmUkWON/hfnNgPhD

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\image001.png
1⤵
PID:3116

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy