Joe Sandbox Cloud Basic Analysis Report
Play interactive tourEdit tour

Windows Analysis Report cm-chat-media-video-1_6aff06b6-a759-5771-9336-ff09403d06ed_1206_0_0.mov

Overview

General Information

Sample Name:cm-chat-media-video-1_6aff06b6-a759-5771-9336-ff09403d06ed_1206_0_0.mov
Analysis ID:532078
MD5:8454a8b7125698daa65d1bd1d6d1733c
SHA1:126a171400d3c58a06da84fbef29876474392dda
SHA256:fc72d58de9c6bb0efba200b671812f5f69cc51a6f46a083d9c29164d604ec711

Most interesting Screenshot:

Errors
  • No process behavior to analyse as no analysis process or sample was found
  • Corrupt sample or wrongly selected analyzer. Details: 80040153

Detection

Score:0
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

No high impact signatures.

Classification

RansomwareSpreadingPhishingBankerTrojan / BotAdwareSpywareExploiterEvaderMinercleansuspiciousmalicious

Malware Configuration

No configs have been found

Yara Overview

No yara matches

Sigma Overview

No Sigma rule has matched

Jbx Signature Overview

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: classification engineClassification label: unknown0.winMOV@0/0@0/0

Mitre Att&ck Matrix

No Mitre Att&ck techniques found

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
cm-chat-media-video-1_6aff06b6-a759-5771-9336-ff09403d06ed_1206_0_0.mov0%VirustotalBrowse

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

No Antivirus matches

Domains and IPs

Contacted Domains

No contacted domains info

Contacted IPs

No contacted IP infos

General Information

Joe Sandbox Version:34.0.0 Boulder Opal
Analysis ID:532078
Start date:01.12.2021
Start time:17:47:22
Joe Sandbox Product:CloudBasic
Overall analysis duration:0h 1m 58s
Hypervisor based Inspection enabled:false
Report type:full
Sample file name:cm-chat-media-video-1_6aff06b6-a759-5771-9336-ff09403d06ed_1206_0_0.mov
Cookbook file name:default.jbs
Analysis system description:Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
Number of analysed new started processes analysed:1
Number of new started drivers analysed:0
Number of existing processes analysed:0
Number of existing drivers analysed:0
Number of injected processes analysed:0
Technologies:
  • EGA enabled
  • HDC enabled
  • AMSI enabled
Analysis Mode:default
Analysis stop reason:Timeout
Detection:UNKNOWN
Classification:unknown0.winMOV@0/0@0/0
Cookbook Comments:
  • Adjust boot time
  • Enable AMSI
  • Found application associated with file extension: .mov
  • Unable to launch sample, stop analysis
Warnings:
  • Exclude process from analysis (whitelisted): dllhost.exe
Errors:
  • No process behavior to analyse as no analysis process or sample was found
  • Corrupt sample or wrongly selected analyzer. Details: 80040153

Simulations

No simulations

Joe Sandbox View / Context

IPs

No context

Domains

No context

ASN

No context

JA3 Fingerprints

No context

Dropped Files

No context

Created / dropped Files

No created / dropped files found

Static File Info

General

File type:ISO Media, MP4 v2 [ISO 14496-14]
Entropy (8bit):7.994447824185028
TrID:
  • MPEG-4 Video (70008/3) 36.55%
  • iPhone Ringtone (63007/2) 32.90%
  • 3GPP2 multimedia audio/video (48507/2) 25.33%
  • QuickTime Movie (5001/1) 2.61%
  • Generic MP4 container (3007/2) 1.57%
File name:cm-chat-media-video-1_6aff06b6-a759-5771-9336-ff09403d06ed_1206_0_0.mov
File size:922624
MD5:8454a8b7125698daa65d1bd1d6d1733c
SHA1:126a171400d3c58a06da84fbef29876474392dda
SHA256:fc72d58de9c6bb0efba200b671812f5f69cc51a6f46a083d9c29164d604ec711
SHA512:dc168592e6918f5ee81eb421211075e0b4510900fec78390d4ada115a4644f23e0106f3260483a3588ed3387b30ebed92830a58d23f7a9a03faadea482053aca
SSDEEP:12288:MAlf6ptfS18x97Wegx2f6uWBQGk7oznlFIyfx4gFUW67pO9rtK5uZ4AQfIn9:JR6ptfnx9UIf6uWB8unVFvqpgtYuqAf9
File Content Preview:....ftypmp42....isommp41mp42....mdat...........................................................................................................................................................................................................................

File Icon

Icon Hash:74f0dcc4c4c4e0e4

Network Behavior

No network behavior found

Code Manipulations

Statistics

System Behavior

Disassembly