Analysis
-
max time kernel
118s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
04/05/2024, 14:53
Static task
static1
Behavioral task
behavioral1
Sample
configureStealChecker.png
Resource
win7-20240221-en
2 signatures
150 seconds
General
-
Target
configureStealChecker.png
-
Size
368KB
-
MD5
8936cdc89ee43290579add773a497087
-
SHA1
b61359f3b458464bf7b8dbdf6fc484233e8a3db7
-
SHA256
3bc027a50eb8aa85e590e120d203bec009069f23e8637145916b0de4827209ff
-
SHA512
0f859fa7d1c963597baa8e563f69ff27890fadd7a0a825f77dca920d3734be16ac57194ce1007a4bc3704ef47d5c5e94d0d576da00290e28be9930689a212196
-
SSDEEP
6144:j1OvxXJji92TihPsDJ8n9P3gj71BaeGol3hPTPLNLW/fNvnKI6MfYkUMg2Lcz5gc:32eZsDJ8B3gjuol3hrPBLafNfb6wbU9P
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of FindShellTrayWindow 2 IoCs
pid Process 1336 rundll32.exe 1336 rundll32.exe