Overview

overview

5

Static

static

3

BetterDisc...ws.exe

windows7-x64

5

BetterDisc...ws.exe

windows10-2004-x64

5

$PLUGINSDI...ge.dll

windows7-x64

1

$PLUGINSDI...ge.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

BetterDiscord.exe

windows7-x64

5

BetterDiscord.exe

windows10-2004-x64

5

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows7-x64

3

d3dcompiler_47.dll

windows10-2004-x64

3

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

3

libGLESv2.dll

windows10-2004-x64

3

locales/zh-TW.pak

windows7-x64

3

locales/zh-TW.pak

windows10-2004-x64

3

resources.pak

windows7-x64

3

resources.pak

windows10-2004-x64

3

resources/app.js

windows7-x64

1

resources/app.js

windows10-2004-x64

1

resources/...n.icns

windows7-x64

3

resources/...n.icns

windows10-2004-x64

3

resources/...on.ico

windows7-x64

3

resources/...on.ico

windows10-2004-x64

3

resources/...nd.png

windows7-x64

3

resources/...nd.png

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01-02-2024 17:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    resources/assets/icon.icns

  • Size

    46KB

  • MD5

    8f80ca9ee10705d617566a041ccfe010

  • SHA1

    531c952d46864e1a295c765e236d31147c5b7dbf

  • SHA256

    a4dc3ce7a64207d10d15c4c537599f47b4ec1f16b53dbf3a92466d050ed4fcc5

  • SHA512

    ad1184a361b1645c6ec9be311bedf46f1518060e558da758e01fb56d7668b4b611bb1b320f8664c53958d6192c5f3d16c2f7643c2e99246fc6e1fe41bec72ad3

  • SSDEEP

    768:DEE/FGBpID9deCikSY4CbB5k1yBte6eLjjuX5V6S/00wnkKhVLXCe6sP:YE/FGBpID9dvhd4C95Ey2HX0N/3mLXGy

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\resources\assets\icon.icns
    1⤵
    • Modifies registry class
    PID:4356
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads