b4566a42eadc945fd6745eac49cd1da99c774def0d2ef075d92511dfc36ab3a2 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

DISP.exe

windows7-x64

1

DISP.exe

windows10-2004-x64

1

LX.exe

windows7-x64

1

LX.exe

windows10-2004-x64

1

SnoConnector.exe

windows7-x64

1

SnoConnector.exe

windows10-2004-x64

1

lxextr.exe

windows7-x64

1

lxextr.exe

windows10-2004-x64

1

lxsmartstrip.exe

windows7-x64

1

lxsmartstrip.exe

windows10-2004-x64

1

sno_ui.exe

windows7-x64

1

sno_ui.exe

windows10-2004-x64

1

InstallerD...te.jar

windows7-x64

1

InstallerD...te.jar

windows10-2004-x64

1

InstallerD...es.jar

windows7-x64

1

InstallerD...es.jar

windows10-2004-x64

1

Windows/install.exe

windows7-x64

7

Windows/install.exe

windows10-2004-x64

7

Windows/msvcrt.dll

windows7-x64

3

Windows/msvcrt.dll

windows10-2004-x64

3

Windows/re...er.exe

windows7-x64

1

Windows/re...er.exe

windows10-2004-x64

1

Windows/re...32.dll

windows7-x64

1

Windows/re...32.dll

windows10-2004-x64

3

Windows/re...ue.jar

windows7-x64

1

Windows/re...ue.jar

windows10-2004-x64

1

Windows/re...SE.rtf

windows7-x64

4

Windows/re...SE.rtf

windows10-2004-x64

1

Windows/re...de.rtf

windows7-x64

4

Windows/re...de.rtf

windows10-2004-x64

1

Windows/re...es.rtf

windows7-x64

4

Windows/re...es.rtf

windows10-2004-x64

1

Analysis

max time kernel
92s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
13-05-2023 03:41

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

DISP.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

DISP.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

LX.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

LX.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

SnoConnector.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

SnoConnector.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

lxextr.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

lxextr.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

lxsmartstrip.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

lxsmartstrip.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

sno_ui.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

sno_ui.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

InstallerData/Execute.jar

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

InstallerData/Execute.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

InstallerData/IAClasses.jar

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

InstallerData/IAClasses.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Windows/install.exe

Resource

win7-20230220-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

Windows/install.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Windows/msvcrt.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

Windows/msvcrt.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

Windows/resource/ZGWin32LaunchHelper.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Windows/resource/ZGWin32LaunchHelper.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Windows/resource/iawin32.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

Windows/resource/iawin32.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral25

Sample

Windows/resource/jdglue.jar

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Windows/resource/jdglue.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Windows/resource/jre/LICENSE.rtf

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral28

Sample

Windows/resource/jre/LICENSE.rtf

Resource

win10v2004-20230220-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral29

Sample

Windows/resource/jre/LICENSE_de.rtf

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral30

Sample

Windows/resource/jre/LICENSE_de.rtf

Resource

win10v2004-20230220-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral31

Sample

Windows/resource/jre/LICENSE_es.rtf

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral32

Sample

Windows/resource/jre/LICENSE_es.rtf

Resource

win10v2004-20230221-en

windows10-2004-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

Windows/resource/ZGWin32LaunchHelper.exe
Size

44KB
MD5

3b169826081aa0b92bf122454f59de05
SHA1

89f61544053e08c0b7c28f25d471098a6d9b3d6f
SHA256

227a75af3c4004d9a81f1c5d89f106f0ebd0b16c049fcdc6de6fbe686684f0d5
SHA512

4e9cc27f39d375c4ae5610c47194de630060634bcf54c6ba16647b93c9ba35a80fd54fdb63c42ee5d6e242c02a6c89e954b2a83d9f9515c5d1edb509a757cc85
SSDEEP

768:Zz9XXuvhWoPadLoyquZPHzzBuWalOs/9CltM+Pmbmqryrvi0TDuAzt:T6hWoENhz0WGqrHuAB

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\Windows\resource\ZGWin32LaunchHelper.exe
"C:\Users\Admin\AppData\Local\Temp\Windows\resource\ZGWin32LaunchHelper.exe"
1⤵
PID:3788

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3788-133-0x0000000000400000-0x000000000040D000-memory.dmp

Filesize
52KB

Download

© 2018-2024

Terms | Privacy