Overview

overview

10

Static

static

7

Fighter FX...FX.dll

windows7-x64

10

Fighter FX...FX.dll

windows10-2004-x64

10

Fighter FX...FX.exe

windows7-x64

1

Fighter FX...FX.exe

windows10-2004-x64

1

Fighter FX...er.exe

windows7-x64

7

Fighter FX...er.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    158s
  • max time network
    40s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 23:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Fighter FX 8.0/FighterFX.exe

  • Size

    313KB

  • MD5

    3222aefcbaf8872829769afa0373651d

  • SHA1

    27b9dadea195224e7c6437802cf5b5465aec2b02

  • SHA256

    626b8debd9128cd51f3df16d55e0a6be8614f2baf26e607a86220f275e1e494c

  • SHA512

    06774c794abb41344c2143e5fe2ce22710cd5131a4c9addb653a51923100c0d0a2606d1603f818fa5539340edee7c0f38730bc7a0374cdffa6b28af872c7f0ca

  • SSDEEP

    6144:XaXSR7RjTSpK+rllogRDppAdMYdzc80lhWMMSWleflaSWwskf4ho:qXs2KolQdldYgjSweflwwskfA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Fighter FX 8.0\FighterFX.exe
    "C:\Users\Admin\AppData\Local\Temp\Fighter FX 8.0\FighterFX.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2960

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2960-0-0x0000000000400000-0x0000000000467000-memory.dmp

          Filesize

          412KB

          Download

        • memory/2960-1-0x0000000000400000-0x0000000000467000-memory.dmp

          Filesize

          412KB

          Download