Loading ...

Play interactive tourEdit tour

Analysis Report Rejected_20191103.000098.01.tif

Overview

General Information

Joe Sandbox Version:28.0.0 Lapis Lazuli
Analysis ID:188693
Start date:08.11.2019
Start time:23:21:09
Joe Sandbox Product:CloudBasic
Overall analysis duration:0h 1m 37s
Hypervisor based Inspection enabled:false
Report type:full
Sample file name:Rejected_20191103.000098.01.tif
Cookbook file name:default.jbs
Analysis system description:Windows 10 64 bit (version 1803) with Office 2016, Adobe Reader DC 19, Chrome 70, Firefox 63, Java 8.171, Flash 30.0.0.113
Number of analysed new started processes analysed:1
Number of new started drivers analysed:0
Number of existing processes analysed:0
Number of existing drivers analysed:0
Number of injected processes analysed:0
Technologies:
  • EGA enabled
  • HDC enabled
  • AMSI enabled
Analysis stop reason:Timeout
Detection:UNKNOWN
Classification:unknown0.winTIF@0/0@0/0
Cookbook Comments:
  • Adjust boot time
  • Enable AMSI
  • Found application associated with file extension: .tif
  • Unable to launch sample, stop analysis
Warnings:
Show All
  • Exclude process from analysis (whitelisted): dllhost.exe
Errors:
  • Nothing to analyse, Joe Sandbox has not found any analysis process or sample
  • Corrupt sample or wrongly selected analyzer. Details: 80040153

Detection

StrategyScoreRangeReportingWhitelistedDetection
Threshold00 - 100falseunknown

Confidence

StrategyScoreRangeFurther Analysis Required?Confidence
Threshold40 - 5false
ConfidenceConfidence


Classification

Analysis Advice

Sample is a picture (JPEG, PNG, GIF etc), nothing to analyze



Mitre Att&ck Matrix

No Mitre Att&ck techniques found

Signature Overview

Click to jump to signature section


System Summary:

barindex
Classification labelShow sources
Source: classification engineClassification label: unknown0.winTIF@0/0@0/0

Simulations

Behavior and APIs

No simulations

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
Rejected_20191103.000098.01.tif0%VirustotalBrowse

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

No Antivirus matches

Yara Overview

Initial Sample

No yara matches

PCAP (Network Traffic)

No yara matches

Dropped Files

No yara matches

Memory Dumps

No yara matches

Unpacked PEs

No yara matches

Sigma Overview

No Sigma rule has matched

Joe Sandbox View / Context

IPs

No context

Domains

No context

ASN

No context

JA3 Fingerprints

No context

Dropped Files

No context

Created / dropped Files

No created / dropped files found

Domains and IPs

Contacted Domains

No contacted domains info

Contacted IPs

No contacted IP infos

Static File Info

General

File type:TIFF image data, little-endian, direntries=18, height=3508, bps=1, compression=bi-level group 4, PhotometricIntepretation=WhiteIsZero, orientation=upper-left, width=2480
Entropy (8bit):7.567288176174569
TrID:
  • Tagged Image File Format Bitmap (little endian) (4004/1) 99.83%
  • Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.17%
File name:Rejected_20191103.000098.01.tif
File size:226137
MD5:f6a4d22155307b2272c55dcea904d784
SHA1:622a0183fc3364315e41964b115f0b5df0fb1554
SHA256:81c93b449a5034ac2eb2633d3f9a92fa50f295867f1fa6b65dd935681d67db64
SHA512:54b03eaf1f91b921dd0b251b67cb73d9c6601b3a0b9325020c49278eece51fcefe1379bb1c4538c1013da70f82604d08e2c1ad63fae791a8432efe3e714f9692
SSDEEP:6144:cv5wO8V7ojGNwo4wt9rVUaHRq01gBBIQoZVC4678+Ag:ch4V7KGNP4wrrWwq01omV9+Ag
File Content Preview:II*...................................................................................................................................................0.......................................(...........2...........;...............,.......,.......12-24-200

File Icon

Icon Hash:208e869a8ab2ae00

Network Behavior

No network behavior found

Code Manipulations

Statistics

System Behavior

Disassembly

Reset < >