Overview

overview

3

Static

static

1

Inkscape-1...64.dmg

macos-10.15-amd64

1

Inkscape/.ds_store

windows7-x64

3

Inkscape/.ds_store

windows10-2004-x64

3

Inkscape/....n.icns

windows7-x64

3

Inkscape/....n.icns

windows10-2004-x64

3

Inkscape/....d.tiff

windows7-x64

3

Inkscape/....d.tiff

windows10-2004-x64

3

Inkscape/I...fo.xml

windows7-x64

1

Inkscape/I...fo.xml

windows10-2004-x64

1

Inkscape/I...kgInfo

windows7-x64

1

Inkscape/I...kgInfo

windows10-2004-x64

1

Inkscape/I...es.xml

windows7-x64

1

Inkscape/I...es.xml

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/03/2024, 03:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Inkscape/.background.tiff

  • Size

    822KB

  • MD5

    504125a85983b291dc8a46fb6d13bbf5

  • SHA1

    ad58918e7b6b2db2a4a627607339c998becaefdf

  • SHA256

    38897d951d211baeef6492ee243adf4f67d0748294c00f5656ca212a10ef2bf0

  • SHA512

    43cdc3877b9bf1a7cc440c6cc90b67228b6c82e67a2590f1efc5f014c93b76639eb4b7096c420de2de4294d7efb952259f38d1fcc5a0917fa6eed803edc8bbdf

  • SSDEEP

    12288:cpay9IENJJ9zzbVFZnbrTPvsD7or5l/Yfy+EJvEoZzSA87crBjHSWsRKIn2:Qzzb5vScrP/+yTFOD7SjHSWon2

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Windows\System32\rundll32.exe
    C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen C:\Users\Admin\AppData\Local\Temp\Inkscape\.background.tiff
    1⤵
    • Suspicious use of FindShellTrayWindow
    PID:4516

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads