Overview

overview

3

Static

static

3

Bad_Apple_...ram.js

windows10-1703-x64

1

Bad_Apple_...er.exe

windows10-1703-x64

1

Bad_Apple_...er.exe

windows10-1703-x64

1

Bad_Apple_...es.cmd

windows10-1703-x64

1

Analysis

  • max time kernel
    289s
  • max time network
    302s
  • platform
    windows10-1703_x64
  • resource
    win10-20231215-en
  • resource tags

    arch:x64arch:x86image:win10-20231215-enlocale:en-usos:windows10-1703-x64system
  • submitted
    09-01-2024 19:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bad_Apple_in_Wallpaper-BAiW_Frames/Bad Apple in Wallpaper.exe

  • Size

    7KB

  • MD5

    a0f4788d83b1e0e35dfb786e73f38e0b

  • SHA1

    9834dc20353f3708534322cd6feea1b1958dceb2

  • SHA256

    b8435a8ae3c5751ebbfaba35abf062f5213a3a37bf9c06f477090169bdb62f74

  • SHA512

    3c956db2de8274a910128a110ad25428af6423091eb0b119a4a7d1dd8973d01fb4aeccc561d094778593ae542b91e9b79b6711a9109b9927df9e0cb8a6a38246

  • SSDEEP

    96:ApGa+txnq4+NnFDdyaT7VeSUStXycxiuaOGZynqzNt:AQVLYFDQe7VeSz5JA8uynM

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Bad_Apple_in_Wallpaper-BAiW_Frames\Bad Apple in Wallpaper.exe
    "C:\Users\Admin\AppData\Local\Temp\Bad_Apple_in_Wallpaper-BAiW_Frames\Bad Apple in Wallpaper.exe"
    1⤵
      PID:3592
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:5096

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3592-0-0x0000000000380000-0x0000000000388000-memory.dmp

        Filesize

        32KB

        Download

      • memory/3592-1-0x0000000073340000-0x0000000073A2E000-memory.dmp

        Filesize

        6.9MB

        Download

      • memory/3592-3-0x0000000004C70000-0x0000000004D02000-memory.dmp

        Filesize

        584KB

        Download

      • memory/3592-2-0x0000000005070000-0x000000000556E000-memory.dmp

        Filesize

        5.0MB

        Download

      • memory/3592-4-0x0000000073340000-0x0000000073A2E000-memory.dmp

        Filesize

        6.9MB

        Download