Overview

overview

7

Static

static

3

SoulsOutfi...29.zip

windows7-x64

1

SoulsOutfi...29.zip

windows10-2004-x64

1

SoulsOufitManager.exe

windows7-x64

7

SoulsOufitManager.exe

windows10-2004-x64

7

SoulsOufitManager.pyc

windows7-x64

3

SoulsOufitManager.pyc

windows10-2004-x64

3

SoulsOutfi...a.json

windows7-x64

3

SoulsOutfi...a.json

windows10-2004-x64

3

assets/gun...st.ico

windows7-x64

3

assets/gun...st.ico

windows10-2004-x64

3

assets/par...s.json

windows7-x64

3

assets/par...s.json

windows10-2004-x64

3

assets/tem...t.json

windows7-x64

3

assets/tem...t.json

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    14/08/2023, 14:57 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SoulsOufitManager.exe

  • Size

    10.1MB

  • MD5

    8750d77880555181d64ac46f743e2956

  • SHA1

    a7309da1e377ecc67bdc9de2d7a8513ec4a4a284

  • SHA256

    536a4f1d63704ce69ef7a9fd17a0c4aeac7308afa12ebfb248e019f28f525408

  • SHA512

    6ad15fe5c525ccdf8e2ed5f279e6e48aa1aa0dafcf77daa582649ec9c7b533eaee0d8c511799335daa9114e55a6d63b89a1297e39b7f3c4eb1c161081db6ac76

  • SSDEEP

    196608:SKhQW89CCsXDjDyfGZk648RmU/3ZlsPv1eZMnTvN8CejK5RhB3:xhQ4CEDrZk6tN3ZW1eeTeUx

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 7 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SoulsOufitManager.exe
    "C:\Users\Admin\AppData\Local\Temp\SoulsOufitManager.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Users\Admin\AppData\Local\Temp\SoulsOufitManager.exe
      "C:\Users\Admin\AppData\Local\Temp\SoulsOufitManager.exe"
      2⤵
      • Loads dropped DLL
      PID:2388

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-file-l1-2-0.dll
    Filesize

    11KB

    MD5

    a8b0327931fd2c863693634b3081e6a0

    SHA1

    d66cd78c124e931667b6079d5bc5adf55a644293

    SHA256

    1fa836b3704b29e7ad1ea1b0b457f62aae4435c6a1d745707631552a2f83d5f6

    SHA512

    1b8331ac9b17d3553a5c7b4572f826bb232b339c28f6c9a31a870097c7612587cd1dbe59fe294501ce11cf5bba973d83784108309617b6f7104f2aae8f723961

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-file-l2-1-0.dll
    Filesize

    11KB

    MD5

    eb4c279c8386d4f30aab6d76feec3e5a

    SHA1

    0c611e8f56591f64841b846df7d5c07fd75b55a4

    SHA256

    56bc7d3dd48d9cb209195f71be67d0a90ca929a8d4e6ae5a481f3ab0345da294

    SHA512

    1869b0c843df05ba849e79aa15b25855aa5c2c2e5a932c0de650b83c8abe2371585731b0213061b8f4d781a87b352ad3a09bf8555fcf0f9422a0bcc1a9062781

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-localization-l1-2-0.dll
    Filesize

    14KB

    MD5

    a94626cbc9c0e1b62619a8cf49504ff8

    SHA1

    047e2b1f21f1258242238043143f1d892538bbc3

    SHA256

    a36792281c0aaab929635bb1f40ee3627225e7e35e6a199c188f3f782c7e6c27

    SHA512

    b208602f33f02c92df718e4c009e6e8055e538c9451ef6f9682ce21db5258d799c09f689aae2879470a934b60b4f3d44ea82704933fa40f2ff408cf42bd1c534

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-processthreads-l1-1-1.dll
    Filesize

    12KB

    MD5

    b16e6798ad40000698a09276961fc2c3

    SHA1

    b5184d9bdb1f5e7cfe17b2ec305c8554362067de

    SHA256

    f8b7122ca5e1d473818940fea4d1155af429463038ba61953908fbbbb7a8d613

    SHA512

    a4737a2236eb35e1b4935a5e333c7f1c51588852a8daf654fd2e7ca6e945e40df9d001394c2f3e3a9d023b8d4e34e9753f6472ed58df245b104623d7dbde7423

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-timezone-l1-1-0.dll
    Filesize

    11KB

    MD5

    f0f891d08e0e358327b323b38f3ffca2

    SHA1

    eb20f147c53f86c59603f5edbf60f936f768fb1b

    SHA256

    9c8461929b61e0fd269ce735d699e7e3b6c0159d3e2659f60d681290abf9eac5

    SHA512

    94e13c4d09ff35c2ded7fd2649b3542aade1414f05772e2034af7723f2622e662e8c0bb67e1eb288e230f8ae183d8f1296c2a134b7ae061a452fa3f7423d7694

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\python39.dll
    Filesize

    4.3MB

    MD5

    5cd203d356a77646856341a0c9135fc6

    SHA1

    a1f4ac5cc2f5ecb075b3d0129e620784814a48f7

    SHA256

    a56afcf5f3a72769c77c3bc43c9b84197180a8b3380b6258073223bfd72ed47a

    SHA512

    390008d57fa711d7c88b77937bf16fdb230e7c1e7182faea6d7c206e9f65ced6f2e835f9da9befb941e80624abe45875602e0e7ad485d9a009d2450a2a0e0f1f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI24962\ucrtbase.dll
    Filesize

    1011KB

    MD5

    7e39d82adf5da0b51a968c764e0e15c1

    SHA1

    79e75ccde95798f21a34e5650b29dbebe79c1b43

    SHA256

    d67926328a72816d2944d7c88df6ff4bfccd41a9ce39af0309a0639829d0e7fb

    SHA512

    1c58d53c40535f80f482a5f406ef5bf9c2f963b9db5969c37ef47b0c59522a1a9bde3f3589538a7ae7d99d567a43170b384761e572c740010feb86894ce7322a

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-file-l1-2-0.dll
    Filesize

    11KB

    MD5

    a8b0327931fd2c863693634b3081e6a0

    SHA1

    d66cd78c124e931667b6079d5bc5adf55a644293

    SHA256

    1fa836b3704b29e7ad1ea1b0b457f62aae4435c6a1d745707631552a2f83d5f6

    SHA512

    1b8331ac9b17d3553a5c7b4572f826bb232b339c28f6c9a31a870097c7612587cd1dbe59fe294501ce11cf5bba973d83784108309617b6f7104f2aae8f723961

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-file-l2-1-0.dll
    Filesize

    11KB

    MD5

    eb4c279c8386d4f30aab6d76feec3e5a

    SHA1

    0c611e8f56591f64841b846df7d5c07fd75b55a4

    SHA256

    56bc7d3dd48d9cb209195f71be67d0a90ca929a8d4e6ae5a481f3ab0345da294

    SHA512

    1869b0c843df05ba849e79aa15b25855aa5c2c2e5a932c0de650b83c8abe2371585731b0213061b8f4d781a87b352ad3a09bf8555fcf0f9422a0bcc1a9062781

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-localization-l1-2-0.dll
    Filesize

    14KB

    MD5

    a94626cbc9c0e1b62619a8cf49504ff8

    SHA1

    047e2b1f21f1258242238043143f1d892538bbc3

    SHA256

    a36792281c0aaab929635bb1f40ee3627225e7e35e6a199c188f3f782c7e6c27

    SHA512

    b208602f33f02c92df718e4c009e6e8055e538c9451ef6f9682ce21db5258d799c09f689aae2879470a934b60b4f3d44ea82704933fa40f2ff408cf42bd1c534

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-processthreads-l1-1-1.dll
    Filesize

    12KB

    MD5

    b16e6798ad40000698a09276961fc2c3

    SHA1

    b5184d9bdb1f5e7cfe17b2ec305c8554362067de

    SHA256

    f8b7122ca5e1d473818940fea4d1155af429463038ba61953908fbbbb7a8d613

    SHA512

    a4737a2236eb35e1b4935a5e333c7f1c51588852a8daf654fd2e7ca6e945e40df9d001394c2f3e3a9d023b8d4e34e9753f6472ed58df245b104623d7dbde7423

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\api-ms-win-core-timezone-l1-1-0.dll
    Filesize

    11KB

    MD5

    f0f891d08e0e358327b323b38f3ffca2

    SHA1

    eb20f147c53f86c59603f5edbf60f936f768fb1b

    SHA256

    9c8461929b61e0fd269ce735d699e7e3b6c0159d3e2659f60d681290abf9eac5

    SHA512

    94e13c4d09ff35c2ded7fd2649b3542aade1414f05772e2034af7723f2622e662e8c0bb67e1eb288e230f8ae183d8f1296c2a134b7ae061a452fa3f7423d7694

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\python39.dll
    Filesize

    4.3MB

    MD5

    5cd203d356a77646856341a0c9135fc6

    SHA1

    a1f4ac5cc2f5ecb075b3d0129e620784814a48f7

    SHA256

    a56afcf5f3a72769c77c3bc43c9b84197180a8b3380b6258073223bfd72ed47a

    SHA512

    390008d57fa711d7c88b77937bf16fdb230e7c1e7182faea6d7c206e9f65ced6f2e835f9da9befb941e80624abe45875602e0e7ad485d9a009d2450a2a0e0f1f

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI24962\ucrtbase.dll
    Filesize

    1011KB

    MD5

    7e39d82adf5da0b51a968c764e0e15c1

    SHA1

    79e75ccde95798f21a34e5650b29dbebe79c1b43

    SHA256

    d67926328a72816d2944d7c88df6ff4bfccd41a9ce39af0309a0639829d0e7fb

    SHA512

    1c58d53c40535f80f482a5f406ef5bf9c2f963b9db5969c37ef47b0c59522a1a9bde3f3589538a7ae7d99d567a43170b384761e572c740010feb86894ce7322a

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.