Overview

overview

5

Static

static

3

LO151ColitaH.rar

windows7-x64

3

LO151ColitaH.rar

windows10-2004-x64

3

ColHenPu-4.png

windows7-x64

3

ColHenPu-4.png

windows10-2004-x64

3

Importante.txt

windows7-x64

1

Importante.txt

windows10-2004-x64

1

LostLife_1...me.txt

windows7-x64

1

LostLife_1...me.txt

windows10-2004-x64

1

LostLife_1...ad.url

windows7-x64

1

LostLife_1...ad.url

windows10-2004-x64

1

LostLife_1...51.exe

windows7-x64

1

LostLife_1...51.exe

windows10-2004-x64

1

LostLife_1...51.swf

windows7-x64

3

LostLife_1...51.swf

windows10-2004-x64

3

LostLife_1...th.swf

windows7-x64

3

LostLife_1...th.swf

windows10-2004-x64

3

LostLife_1...d1.swf

windows7-x64

3

LostLife_1...d1.swf

windows10-2004-x64

3

LostLife_1...ng.xml

windows7-x64

1

LostLife_1...ng.xml

windows10-2004-x64

1

LostLife_1...xx.xml

windows7-x64

1

LostLife_1...xx.xml

windows10-2004-x64

1

LostLife_1...fe.swf

windows7-x64

3

LostLife_1...fe.swf

windows10-2004-x64

5

LostLife_1...go.swf

windows7-x64

3

LostLife_1...go.swf

windows10-2004-x64

3

LostLife_1...m1.swf

windows7-x64

3

LostLife_1...m1.swf

windows10-2004-x64

3

LostLife_1...le.swf

windows7-x64

3

LostLife_1...le.swf

windows10-2004-x64

3

LostLife_1...nd.swf

windows7-x64

3

LostLife_1...nd.swf

windows10-2004-x64

3

Analysis

  • max time kernel
    80s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230621-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/06/2023, 18:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LostLife_1.51/LostLife_1.51/lib/m1.swf

  • Size

    38.4MB

  • MD5

    f402f283b08ed8fcf93137d45fdb8b5a

  • SHA1

    a7390cedc8daf202abd08ff4a9398f75476fa931

  • SHA256

    6ee2e086176ac021c361693d9572e956bc2fd48e977aa58b90dcda46b28e65cb

  • SHA512

    bbd11b3eb36dbd436f1988d5d433918e7d1b164147cb32bea8b79a98f8f50a07618720e8a6017eaea5a92c14b9c8f6b13df7c403ef824befbfdc9be5c41dc556

  • SSDEEP

    786432:3v2P0DwbeDD9MIGsrwbULegFCzsREhGIVdF1tI+om8X9ZnZJsgK4b8Q13VBTOzpq:3vbDxDDyP4wAL9FCzsOGcdXtIA8Hz5bV

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\LostLife_1.51\LostLife_1.51\lib\m1.swf
    1⤵
    • Modifies registry class
    PID:680
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:3912

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads