Overview

overview

10

Static

static

10

a.zip

windows7-x64

1

a.zip

windows10-2004-x64

1

tf2hud-edi...r3.dll

windows10-2004-x64

1

tf2hud-edi...s.json

windows7-x64

3

tf2hud-edi...s.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...s.json

windows7-x64

3

tf2hud-edi...s.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...d.json

windows7-x64

3

tf2hud-edi...d.json

windows10-2004-x64

3

tf2hud-edi...r3.dll

windows7-x64

1

tf2hud-edi...r3.dll

windows10-2004-x64

1

tf2hud-edi...r3.dll

windows7-x64

1

Analysis

  • max time kernel
    123s
  • max time network
    54s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231130-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231130-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-12-2023 18:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    tf2hud-editor/JSON/budhud.json

  • Size

    12KB

  • MD5

    ff01c0be0768edb045c46862d72449bf

  • SHA1

    d44c2c9a8b5b06c4b04c418752a058161a290084

  • SHA256

    d1a251660cc10e0c309f38fb753c9b0ddc5bbcd0257449e91b7405cb0ac171ab

  • SHA512

    a2e31a73b33034362f68e09d53f82adf435decb6b92c07efc0f0ea3b7b485a403742acd916eefe33efdfd257dc13469338c947610fd6258d72c9ee5133473ed2

  • SSDEEP

    192:WiJVQNEaIoYKw39P5WoD1txaZ1mqPQwjy8TJxBsFmMSEptsd3H:3ZDM

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\tf2hud-editor\JSON\budhud.json
    1⤵
    • Modifies registry class
    PID:1396
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:3196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads