20656fb66b0629c323be0f5a94ccbcdc7ba7fe8d14c6a11f90de18819cfc48b0 | Triage

Submit
Reports

Overview

overview

3

Static

static

1

Elmo.jpg

windows10-2004-x64

3

Resubmissions

16-05-2024 16:39

240516-t6faysdh72 3

14-05-2024 14:36

240514-ryw8dsbd49 3

14-05-2024 14:35

240514-rx7yhaba9y 3

07-05-2024 14:36

240507-rysvzabd3w 5

03-05-2024 10:51

240503-mx5qxseg99 5

29-04-2024 18:03

240429-wm3cgsgg97 3

29-04-2024 16:46

240429-t99c7sfg7z 3

24-04-2024 18:17

240424-ww3plseg63 3

23-04-2024 17:19

240423-vvz2naac23 3

Analysis

max time kernel
1792s
max time network
1803s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
29-04-2024 18:03

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Elmo.jpg

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

1800 seconds

Report Analysis Logs

General

Target

Elmo.jpg
Size

5KB
MD5

a6564d72511a7a126fca09696f55dda7
SHA1

afe5009a79b718a57f7b47295bc2dbaf15f15b6d
SHA256

20656fb66b0629c323be0f5a94ccbcdc7ba7fe8d14c6a11f90de18819cfc48b0
SHA512

bb484a1c1283676583fa04539b77cf5735e45b60ba13e8911a7da417159475cf2b70f2cad7ef2ea7b65067b715ac1bc9c57f2169659da3831e4c32f58f504b0a
SSDEEP

96:nBxQRQwdVJHiRfc3E1yU38aUuurzdm2l492S8VlrRV1TfHUniBTF4Tb42UvMmcUd:BWDCRoE1zUhL492FTVhsn0u2kM

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Elmo.jpg
1⤵
PID:2876

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4192 --field-trial-handle=2276,i,5697607538120380977,9987005253899555344,262144 --variations-seed-version /prefetch:8
1⤵
PID:2304

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=3732 --field-trial-handle=2276,i,5697607538120380977,9987005253899555344,262144 --variations-seed-version /prefetch:8
1⤵
PID:4636

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy