Analysis
-
max time kernel
14s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
03/02/2024, 20:48
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
WALLPAPERS.exe
Resource
win7-20231215-en
windows7-x64
4 signatures
150 seconds
Behavioral task
behavioral2
Sample
WALLPAPERS.exe
Resource
win10v2004-20231222-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
WALLPAPERS.exe
-
Size
56.2MB
-
MD5
135323828200e7aaacafb9604e79c7af
-
SHA1
eaaaa4631c1c98e36fb3fcd3a5b60c3636a464ce
-
SHA256
1224f0bb34502add8f875028f7e9eefb7ab360e0bc194b1eeb3e49b911f0efba
-
SHA512
819ed6d64b917481d3edab1651694cd51a66cd961e51722e7bb01b6c597347a6c1d5d8f33637a21f733f01f017dfea3d07c6aa6e62600f417d442e1cf7096b6f
-
SSDEEP
786432:IgFTbzBoayxAOFIfVNNM/oce7MDP5UMkNvw33hYtdHZDFGkgwWKMU3xYUS5:vmawAOFsVhX7QP5UM53REDFGHKMEYP
Score
4/10
Malware Config
Signatures
-
Drops file in Program Files directory 64 IoCs
description ioc Process File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (3).png WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (43).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (81).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (22).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (60).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (17).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (34).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (55).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (4).png WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (47).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (5).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (61).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (70).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (28).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (4).png WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (69).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (78).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (83).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (6).png WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (66).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (30).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (55).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (8).png WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (12).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (20).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (5).png WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (50).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (78).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (45).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (1).png WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (25).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (36).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (39).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (82).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (3).png WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (67).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (84).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (24).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (80).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (11).png WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (46).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (63).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (16).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (2).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (38).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (32).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (4).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (65).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (40).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (46).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (74).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (17).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (23).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (47).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (56).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (7).png WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (75).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (20).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (76).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (85).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (9).jpg WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (9).png WALLPAPERS.exe File opened for modification C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (79).jpg WALLPAPERS.exe File created C:\Program Files (x86)\Las mejroes\WALLPAPERS\FONDO (21).jpg WALLPAPERS.exe -
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
description ioc Process Key created \REGISTRY\USER\S-1-5-21-3601492379-692465709-652514833-1000\Software\Microsoft\Internet Explorer\Main WALLPAPERS.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 1244 WALLPAPERS.exe 1244 WALLPAPERS.exe