Analysis
-
max time kernel
121s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
26-12-2023 05:41
Static task
static1
Behavioral task
behavioral1
Sample
etc/libepsbase.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
etc/libepsbase.dll
Resource
win10v2004-20231215-en
Behavioral task
behavioral3
Sample
etc/wpsserver.exe
Resource
win7-20231215-en
Behavioral task
behavioral4
Sample
etc/wpsserver.exe
Resource
win10v2004-20231222-en
Behavioral task
behavioral5
Sample
点击运行.lnk
Resource
win7-20231215-en
Behavioral task
behavioral6
Sample
点击运行.lnk
Resource
win10v2004-20231215-en
General
-
Target
点击运行.lnk
-
Size
878B
-
MD5
c9f75aaeebc02aa5c121b47bc32e93dd
-
SHA1
f5bf81c81fa853a49cee6eb1fed56e2b4afe31e0
-
SHA256
35c8ea732d7c05699f8a7f34d7bb296b597dffd9fcc436fb69bdd022896584c8
-
SHA512
e0feb68584a020b073e300333ea1faa01167db6375ab1b454905f9a0c9516db25467b980a90c479fd913a5a9e908baaef342f8fb442e5085df482ce08b77ad55
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
Processes
Network
MITRE ATT&CK Matrix ATT&CK v13
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2200-26-0x0000000002560000-0x0000000002561000-memory.dmpFilesize
4KB