a85d22ccaf9cd7d27836ebaebe0bee61e5acd02356a83cf19d03d47e560fef5e | Triage

Submit
Reports

Overview

overview

3

Static

static

1

windows_11...kc.zip

windows7-x64

1

windows_11...kc.zip

windows10-2004-x64

1

Preview.jpg

windows7-x64

3

Preview.jpg

windows10-2004-x64

3

dark/alter...on.cur

windows7-x64

3

dark/alter...on.cur

windows10-2004-x64

3

dark/curso...ll.inf

windows7-x64

1

dark/curso...ll.inf

windows10-2004-x64

1

dark/curso...te.cur

windows7-x64

3

dark/curso...te.cur

windows10-2004-x64

3

dark/cursor/beam.cur

windows7-x64

3

dark/cursor/beam.cur

windows10-2004-x64

3

dark/cursor/busy.ani

windows7-x64

3

dark/cursor/busy.ani

windows10-2004-x64

3

dark/cursor/dgn1.cur

windows7-x64

3

dark/cursor/dgn1.cur

windows10-2004-x64

3

dark/cursor/dgn2.cur

windows7-x64

3

dark/cursor/dgn2.cur

windows10-2004-x64

3

dark/curso...ng.cur

windows7-x64

3

dark/curso...ng.cur

windows10-2004-x64

3

dark/cursor/help.cur

windows7-x64

3

dark/cursor/help.cur

windows10-2004-x64

3

dark/cursor/horz.cur

windows7-x64

3

dark/cursor/horz.cur

windows10-2004-x64

3

dark/cursor/link.cur

windows7-x64

3

dark/cursor/link.cur

windows10-2004-x64

3

dark/cursor/move.cur

windows7-x64

3

dark/cursor/move.cur

windows10-2004-x64

3

dark/curso...on.cur

windows7-x64

3

dark/curso...on.cur

windows10-2004-x64

3

dark/cursor/pin.cur

windows7-x64

3

dark/cursor/pin.cur

windows10-2004-x64

3

Analysis

max time kernel
135s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
20/05/2023, 14:50

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

windows_11_cursors_concept_v2_by_jepricreations_densjkc.zip

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

windows_11_cursors_concept_v2_by_jepricreations_densjkc.zip

Resource

win10v2004-20230221-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

Preview.jpg

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

Preview.jpg

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

dark/alternatives/precision.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

dark/alternatives/precision.cur

Resource

win10v2004-20230221-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

dark/cursor/Install.inf

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

dark/cursor/Install.inf

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

dark/cursor/alternate.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

dark/cursor/alternate.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

dark/cursor/beam.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

dark/cursor/beam.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

dark/cursor/busy.ani

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

dark/cursor/busy.ani

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

dark/cursor/dgn1.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

dark/cursor/dgn1.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

dark/cursor/dgn2.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

dark/cursor/dgn2.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

dark/cursor/handwriting.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

dark/cursor/handwriting.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

dark/cursor/help.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

dark/cursor/help.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

dark/cursor/horz.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

dark/cursor/horz.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

dark/cursor/link.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

dark/cursor/link.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

dark/cursor/move.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

dark/cursor/move.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

dark/cursor/person.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

dark/cursor/person.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

dark/cursor/pin.cur

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

dark/cursor/pin.cur

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

dark/cursor/handwriting.cur
Size

4KB
MD5

3aee2112f22d1ee83343710aa9b5fe93
SHA1

059ffc3ec917ab8c252034fffb9c2a6ef224d0d2
SHA256

f6133572f9e516808919d1b7ef6de0003a4edda020f2cbe3ddd514c2658de28d
SHA512

20e21dd5c87319dc971c57c5076fa9247364e18b0c7886ab3358113041d3b4818519d0b8282f0cd01c3e1ed3e066ef97353f10cd662b981baaf788926586287e
SSDEEP

24:NEZB4lEXn0MY8WtOZJuq+EJHKluuUCUF1yOYbNxxz3hYUOkr:yZK805YZJuq+QH++CUrOZWCr

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\dark\cursor\handwriting.cur
1⤵
PID:4696

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy