Overview

overview

1

Static

static

桌面透�...LL.dll

windows7-x64

1

桌面透�...LL.dll

windows10-2004-x64

1

桌面透�...��.exe

windows7-x64

1

桌面透�...��.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    91s
  • max time network
    144s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-09-2022 14:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    桌面透视汉化版Vitrite/Vitrite主程序.exe

  • Size

    25KB

  • MD5

    6f31adc724b50f6c05f3a63e2ab3bd4d

  • SHA1

    4eda2cf456bc5014a8ec17e8b025f0cdab847437

  • SHA256

    21bb5e18de74a37886979d507005ab091501990a97d702078d4d18f9582e514a

  • SHA512

    f3133dff77ad668735e27cf42e2844b879f36e5fd1796f111c62a58a87bfe16f52bbec0aaacaf982ac81946ae2bb8f21d6fa0cd07c1d62b8208b38505bfedf7b

  • SSDEEP

    384:7Lpeh9ZncHFoBAC+zOaR6bVF8GsLgBY5bHBAqAQeMSKug9+cDWcbK:7NeyUAC+KTRCGsEBoEEoI+cDWcbK

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\桌面透视汉化版Vitrite\Vitrite主程序.exe
    "C:\Users\Admin\AppData\Local\Temp\桌面透视汉化版Vitrite\Vitrite主程序.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads