Overview

overview

4

Static

static

2008传奇...��.chm

windows7-x64

1

2008传奇...��.chm

windows10-2004-x64

1

2008传奇...��.exe

windows7-x64

1

2008传奇...��.exe

windows10-2004-x64

1

2008传奇...��.url

windows7-x64

1

2008传奇...��.url

windows10-2004-x64

1

2008传奇...��.exe

windows7-x64

4

2008传奇...��.exe

windows10-2004-x64

4

2008传奇...��.bat

windows7-x64

1

2008传奇...��.bat

windows10-2004-x64

1

2008传奇...��.exe

windows7-x64

3

2008传奇...��.exe

windows10-2004-x64

3

2008传奇...��.url

windows7-x64

1

2008传奇...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    42s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    27/11/2022, 07:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2008传奇通用登陆器配置工具-(奥运版)√/2008传奇通用登陆器配置工具-(奥运��.url

  • Size

    220B

  • MD5

    93625b43a4cb45d62f9b5250f9a4a766

  • SHA1

    af129f71af02000196637b7ffa92a6501cafd54e

  • SHA256

    bf2ec65d6fcbef7d385af25b0376d8f5d95956412640df1474abf75410620601

  • SHA512

    44755ade8fd41d2354b4dcbde108cefccf375f58c9c7a6431da32147fba1dd7b75efde6bf929df2d18f2f8c99d5c8ce9decb6ab6094f6d17d95a0ae16c291733

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\System32\rundll32.exe
    "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL C:\Users\Admin\AppData\Local\Temp\2008传奇通用登陆器配置工具-(奥运版)√\2008传奇通用登陆器配置工具-(奥运��.url
    1⤵
      PID:1048

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1048-54-0x000007FEFC281000-0x000007FEFC283000-memory.dmp

      Filesize

      8KB

      Download