Overview

overview

7

Static

static

1

[Guru3D.co...er.zip

windows7-x64

1

[Guru3D.co...er.zip

windows10-2004-x64

1

Guru3D.com...om.txt

windows7-x64

1

Guru3D.com...om.txt

windows10-2004-x64

1

Guru3D.com/guru3d.url

windows7-x64

1

Guru3D.com/guru3d.url

windows10-2004-x64

3

MSIAfterbu...64.exe

windows7-x64

7

MSIAfterbu...64.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    141s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    30-08-2023 09:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MSIAfterburnerSetup464.exe

  • Size

    53.1MB

  • MD5

    9169ea8679cdebf702fd499d96853c32

  • SHA1

    5261c476050bff49ecf8340dc10527de303cfe3e

  • SHA256

    d1ea56128b7b0fe5093d6778cec2ffd20ddf6fae3183b68e07fc1cbfc9468ade

  • SHA512

    0b6e03417e2c77e7ee3631f4a82a36fa4681e8c4b217c2a9f6dc0c889515db44fa4b452d0b7c324f6a731f1a50b750da3e4bc0d2d3636ab8182cf5127aaa44e1

  • SSDEEP

    1572864:VoQHOEc9PqslQaGt76mPkGGt76FP8X8i7kpOMPu:V1ufkTt78nt7CZAMPu

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\MSIAfterburnerSetup464.exe
    "C:\Users\Admin\AppData\Local\Temp\MSIAfterburnerSetup464.exe"
    1⤵
    • Loads dropped DLL
    PID:1104

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nso9C8F.tmp\LangDLL.dll
    Filesize

    5KB

    MD5

    08de81a4584f5201086f57a7a93ed83b

    SHA1

    266a6ecc8fb7dca115e6915cd75e2595816841a8

    SHA256

    4883cd4231744be2dca4433ef62824b7957a3c16be54f8526270402d9413ebe6

    SHA512

    b72e7cea5ce1f4dc64e65a1f683a3ef9e3fa2dc45cf421f569eb461f1fdcc0caf4ff62a872e62b400579f567c6ff9fc3c2e6e020cdca89d96015502c803a09b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\nso9C8F.tmp\nsDialogs.dll
    Filesize

    9KB

    MD5

    ca5bb0ee2b698869c41c087c9854487c

    SHA1

    4a8abbb2544f1a9555e57a142a147dfeb40c4ca4

    SHA256

    c719697d5ced17d97bbc48662327339ccec7e03f6552aa1d5c248f6fa5f16324

    SHA512

    363a80843d7601ba119bc981c4346188f490b388e3ed390a0667aaf5138b885eec6c69d4e7f60f93b069d6550277f4c926bd0f37bc893928111dc62494124770

    Download Submit