Analysis
-
max time kernel
120s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
09-04-2024 01:17
Behavioral task
behavioral1
Sample
关于住房补贴申领的细则.png
Resource
win7-20240221-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
关于住房补贴申领的细则.png
Resource
win10v2004-20240226-en
1 signatures
150 seconds
General
-
Target
关于住房补贴申领的细则.png
-
Size
90KB
-
MD5
fb623ffdf69d2cf3020e501638d0676f
-
SHA1
a75a1b4b371a073ee576e57f92da39e5d39f71b2
-
SHA256
a3a09f65f7f1065108c49903f9bb61596d15f8c8807da1d79a06fedaef6affed
-
SHA512
21b1addeea3b5f15c784cdc9b0d9c139f26012aaf0b4a7160bacf27eac669fb096f19983906d62a94ee6b2904ab0deab866dfc626a1f816e04beda4d1594adda
-
SSDEEP
1536:8oipwDOey8uWpPs1xUZswYM0lTd1gEu1FEjF49mViGU9ZpUOp9xu:Ji49d1sjtwasT39mVRUb9w
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes:
rundll32.exepid process 2212 rundll32.exe