Overview

overview

4

Static

static

4

GD/GeometryDash.exe

windows7-x64

1

GD/GeometryDash.exe

windows10-2004-x64

1

GD/Resourc...sc.xml

windows7-x64

1

GD/Resourc...sc.xml

windows10-2004-x64

3

GD/Resourc...MD.xml

windows7-x64

1

GD/Resourc...MD.xml

windows10-2004-x64

3

GD/Resourc...sc.xml

windows7-x64

1

GD/Resourc...sc.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...et.xml

windows7-x64

1

GD/Resourc...et.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...et.xml

windows7-x64

1

GD/Resourc...et.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...01.xml

windows7-x64

1

GD/Resourc...01.xml

windows10-2004-x64

3

GD/Resourc...02.xml

windows7-x64

1

GD/Resourc...02.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

GD/Resourc...hd.xml

windows7-x64

1

GD/Resourc...hd.xml

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/07/2023, 20:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    GD/Resources/AchievementsDesc.xml

  • Size

    135KB

  • MD5

    e58f5d7e020693ea4dee06c54209a0bb

  • SHA1

    2f2e45c227bc3dbb86a9ebd2aea283126a4ff922

  • SHA256

    f63ed2394f6e50ff46dccb220e616b9ae4b40e8dc05f4a59f88dba8fac30fdb5

  • SHA512

    5c59ff2be13b57dbe4238d4a95359b052962908e056694553a0411a356fd2480f8575a0e69e1657865278b73480192456f576dabd173cc87f0edb45d4c00e045

  • SSDEEP

    3072:RlQn0Lyp5cD1vsXGaQ+9AJU15um92cXfHuqvuw+7KHLYbP0HOhRsI6:RlQn0Lyp5cD1vsXGaQ+9AJU15um92cX1

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\GD\Resources\AchievementsDesc.xml"
    1⤵
      PID:1736
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 1736 -s 452
        2⤵
        • Program crash
        PID:2736
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -pss -s 412 -p 1736 -ip 1736
      1⤵
        PID:4660

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1736-133-0x00007FFB18030000-0x00007FFB18040000-memory.dmp

        Filesize

        64KB

        Download

      • memory/1736-134-0x00007FFB57FB0000-0x00007FFB581A5000-memory.dmp

        Filesize

        2.0MB

        Download

      • memory/1736-135-0x00007FFB57FB0000-0x00007FFB581A5000-memory.dmp

        Filesize

        2.0MB

        Download

      • memory/1736-136-0x00007FFB55A60000-0x00007FFB55D29000-memory.dmp

        Filesize

        2.8MB

        Download

      • memory/1736-137-0x00007FFB18030000-0x00007FFB18040000-memory.dmp

        Filesize

        64KB

        Download

      • memory/1736-138-0x00007FFB57FB0000-0x00007FFB581A5000-memory.dmp

        Filesize

        2.0MB

        Download