Overview
overview
7Static
static
FinanceEYEfeeder.zip
windows7-x64
1FinanceEYEfeeder.zip
windows10-2004-x64
1LICENSE
windows7-x64
1LICENSE
windows10-2004-x64
1README.md
windows7-x64
3README.md
windows10-2004-x64
3ThankYou.html
windows7-x64
1ThankYou.html
windows10-2004-x64
1assets/icon.png
windows7-x64
3assets/icon.png
windows10-2004-x64
3background.html
windows7-x64
1background.html
windows10-2004-x64
1background.js
windows7-x64
1background.js
windows10-2004-x64
1content.js
windows7-x64
1content.js
windows10-2004-x64
1manifest.json
windows7-x64
3manifest.json
windows10-2004-x64
3style.css
windows7-x64
3style.css
windows10-2004-x64
7Analysis
-
max time kernel
60s -
max time network
48s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
20-10-2022 21:30
Static task
static1
Behavioral task
behavioral1
Sample
FinanceEYEfeeder.zip
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
FinanceEYEfeeder.zip
Resource
win10v2004-20220901-en
Behavioral task
behavioral3
Sample
LICENSE
Resource
win7-20220812-en
Behavioral task
behavioral4
Sample
LICENSE
Resource
win10v2004-20220812-en
Behavioral task
behavioral5
Sample
README.md
Resource
win7-20220901-en
Behavioral task
behavioral6
Sample
README.md
Resource
win10v2004-20220812-en
Behavioral task
behavioral7
Sample
ThankYou.html
Resource
win7-20220901-en
Behavioral task
behavioral8
Sample
ThankYou.html
Resource
win10v2004-20220812-en
Behavioral task
behavioral9
Sample
assets/icon.png
Resource
win7-20220812-en
Behavioral task
behavioral10
Sample
assets/icon.png
Resource
win10v2004-20220812-en
Behavioral task
behavioral11
Sample
background.html
Resource
win7-20220812-en
Behavioral task
behavioral12
Sample
background.html
Resource
win10v2004-20220901-en
Behavioral task
behavioral13
Sample
background.js
Resource
win7-20220812-en
Behavioral task
behavioral14
Sample
background.js
Resource
win10v2004-20220812-en
Behavioral task
behavioral15
Sample
content.js
Resource
win7-20220901-en
Behavioral task
behavioral16
Sample
content.js
Resource
win10v2004-20220812-en
Behavioral task
behavioral17
Sample
manifest.json
Resource
win7-20220812-en
Behavioral task
behavioral18
Sample
manifest.json
Resource
win10v2004-20220812-en
Behavioral task
behavioral19
Sample
style.css
Resource
win7-20220812-en
Behavioral task
behavioral20
Sample
style.css
Resource
win10v2004-20220901-en
General
-
Target
assets/icon.png
-
Size
4KB
-
MD5
cbd39e2887dccc1598e94fbfeca1f122
-
SHA1
dc898b4667f73a951e11c45d72a169d2874eb0b6
-
SHA256
7cf6f531fd523066d4588c47ca4e2f066a797507fabd059a9de3c10245a05c59
-
SHA512
7dc887d57721153920eab7d4c50bf8d4b2f614a611e38685e52cc18d48e3f75438f1f9da5905c50b8d55903923ae12eee50470c2554755fe5a2940832bb002e5
-
SSDEEP
96:3SZqSVfWIuVS8TZecgEXcjkm8Bgf8XwC/V:3SZqkduVS+TXcjp0wa
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes:
rundll32.exepid process 1868 rundll32.exe
Processes
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1868-54-0x000007FEFBDE1000-0x000007FEFBDE3000-memory.dmpFilesize
8KB