Overview

overview

10

Static

static

Contract.lnk

windows7-x64

3

Contract.lnk

windows10-2004-x64

3

unbelt/bri...rly.js

windows7-x64

3

unbelt/bri...rly.js

windows10-2004-x64

1

unbelt/hotheaded.dll

windows7-x64

10

unbelt/hotheaded.dll

windows10-2004-x64

10

unbelt/unm...la.cmd

windows7-x64

1

unbelt/unm...la.cmd

windows10-2004-x64

1

Analysis

  • max time kernel
    42s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    24-09-2022 03:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Contract.lnk

  • Size

    1KB

  • MD5

    5100d6d3a1687599725094b3e5c06274

  • SHA1

    42cd1580631979d0d1cd173f2519b92aa3538877

  • SHA256

    4b443b68dcf295de405fae9fda1b830e00fbf34f61cdcda49ba4b6b8a3750780

  • SHA512

    7fadb66a4588eeed1556c98c77b376c225502e490f6856524ec375c33f072376685fe6e7bb21edd8c563fdc9c46031f313aef87ec2f9de46c00c55e132bc8146

Score
3/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Contract.lnk
    1⤵
      PID:1100

    Network

    MITRE ATT&CK Matrix ATT&CK v6

    Initial Access

    Execution

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    System Information Discovery

    1
    T1082

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1100-54-0x000007FEFC1F1000-0x000007FEFC1F3000-memory.dmp
      Filesize

      8KB

      Download