e34922479bace0a1a8f9a8cf3d7a6d81f1a0fe07cde0f1f38c824c97e6c651b4 | Triage

Analysis

max time kernel
37s
max time network
44s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
14/01/2023, 00:25

Sharing

Report Analysis Logs

General

Target

ThoramiLeague.zip
Size

113B
MD5

d6fd6d908711717d376b205ad19edbe0
SHA1

245fe07cc6980365f1eef79e2bea0ef9662e4e6f
SHA256

e34922479bace0a1a8f9a8cf3d7a6d81f1a0fe07cde0f1f38c824c97e6c651b4
SHA512

bd35e3a31f9922f4b094258bfac7c2b7f2623bc51e72f854628dd20ec5c1ae40a106b040acd3162683f4d22b514c75d48e7975b04979ddb380add361fe14a9e5

Score

1^/10

Malware Config

Signatures

Suspicious behavior: LoadsDriver 10 IoCs

pid	Process
4	Process not Found
4	Process not Found
4	Process not Found
4	Process not Found
4	Process not Found
648	Process not Found
4	Process not Found
4	Process not Found
4	Process not Found
4	Process not Found

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\ThoramiLeague.zip
1⤵
PID:4876

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads