Overview

overview

10

Static

static

10

Malware-da...00.exe

windows7-x64

Malware-da...00.exe

windows10-2004-x64

Malware-da...ws.exe

windows7-x64

6

Malware-da...ws.exe

windows10-2004-x64

6

Malware-da...as.exe

windows7-x64

1

Malware-da...as.exe

windows10-2004-x64

1

Malware-da...ck.exe

windows7-x64

1

Malware-da...ck.exe

windows10-2004-x64

1

Malware-da...V2.exe

windows7-x64

10

Malware-da...V2.exe

windows10-2004-x64

10

Malware-da...er.exe

windows7-x64

1

Malware-da...er.exe

windows10-2004-x64

1

Malware-da...an.exe

windows7-x64

1

Malware-da...an.exe

windows10-2004-x64

1

Malware-da...up.exe

windows7-x64

1

Malware-da...up.exe

windows10-2004-x64

1

Malware-da...nt.exe

windows7-x64

Malware-da...nt.exe

windows10-2004-x64

Malware-da...ye.exe

windows7-x64

Malware-da...ye.exe

windows10-2004-x64

Malware-da...ry.exe

windows7-x64

10

Malware-da...ry.exe

windows10-2004-x64

10

Malware-da...op.exe

windows7-x64

7

Malware-da...op.exe

windows10-2004-x64

7

Resubmissions

27/05/2024, 22:11

240527-14ae9ada43 10

27/05/2024, 21:15

240527-z3zhbabd59 10

13/02/2024, 12:11

240213-pcwzdshd2w 10

13/02/2024, 12:08

240213-pa6qtahc7y 10

18/12/2023, 08:13

231218-j4g2nabaf5 10

05/12/2023, 08:54

231205-kt32taae27 10

05/12/2023, 07:41

231205-jjdthahh6w 10

05/12/2023, 07:38

231205-jgmcvshh5x 10

26/11/2023, 09:39

231126-lmxf5agd87 10

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 12:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Malware-database-main/ChilledWindows.exe

  • Size

    4.4MB

  • MD5

    6a4853cd0584dc90067e15afb43c4962

  • SHA1

    ae59bbb123e98dc8379d08887f83d7e52b1b47fc

  • SHA256

    ccb9502bf8ba5becf8b758ca04a5625c30b79e2d10d2677cc43ae4253e1288ec

  • SHA512

    feb223e0de9bd64e32dc4f3227e175b58196b5e614bca8c2df0bbca2442a564e39d66bcd465154149dc7ebbd3e1ca644ed09d9a9174b52236c76e7388cb9d996

  • SSDEEP

    98304:XyDt6K4MJVnjOobt/JN1LA5elHc+S4fRp5UvluKo:XyDtK8bbxn+IHcBEV/F

Score
6/10

Malware Config

Signatures

  • Enumerates connected drives 3 TTPs 23 IoCs

    Attempts to read the root path of hard drives other than the default C: drive.

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Malware-database-main\ChilledWindows.exe
    "C:\Users\Admin\AppData\Local\Temp\Malware-database-main\ChilledWindows.exe"
    1⤵
    • Enumerates connected drives
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Malware-database-main\chilledwindows.mp4
    Filesize

    2.9MB

    MD5

    2c110828dabd0e465b1c9a607f5f7779

    SHA1

    e0c0bf083ea3052ca05bdbdc1f54dd8d743df4aa

    SHA256

    2c9e9e98a6fc689b5930b0dadebe1a614079c1ff61af5671a05fe50e243aee68

    SHA512

    e37a792ff09289808e79f3f8d8777a35cddcec1782a7ef0b1c1c351ae8f3e3a8b8a3dce84e41727db802224aae54b4950146a0ef54f4b2518b7a1030e28f1c45

    Download Submit

  • memory/616-35-0x000007FEF5300000-0x000007FEF5CEC000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/616-37-0x000000001B3C0000-0x000000001B440000-memory.dmp

    Filesize

    512KB

    Download

  • memory/616-3-0x000000001B3C0000-0x000000001B440000-memory.dmp

    Filesize

    512KB

    Download

  • memory/616-5-0x0000000000560000-0x000000000056A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-4-0x0000000000560000-0x000000000056A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-1-0x000007FEF5300000-0x000007FEF5CEC000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/616-11-0x000007FEEEC10000-0x000007FEEF001000-memory.dmp

    Filesize

    3.9MB

    Download

  • memory/616-15-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-12-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-16-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-38-0x0000000000560000-0x000000000056A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-30-0x000007FEEE980000-0x000007FEEEAC3000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/616-31-0x000000001AF60000-0x000000001AF6A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-32-0x000007FE97A30000-0x000007FE97A3A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-33-0x000000001AA00000-0x000000001AA01000-memory.dmp

    Filesize

    4KB

    Download

  • memory/616-0-0x0000000000A40000-0x0000000000EA4000-memory.dmp

    Filesize

    4.4MB

    Download

  • memory/616-2-0x000000001B3C0000-0x000000001B440000-memory.dmp

    Filesize

    512KB

    Download

  • memory/616-36-0x000000001B3C0000-0x000000001B440000-memory.dmp

    Filesize

    512KB

    Download

  • memory/616-18-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-39-0x0000000000560000-0x000000000056A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-40-0x000007FEEEC10000-0x000007FEEF001000-memory.dmp

    Filesize

    3.9MB

    Download

  • memory/616-42-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-45-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-44-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-43-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-46-0x000000001AA90000-0x000000001AA9A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-47-0x000000001AF60000-0x000000001AF6A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-48-0x000007FEEE980000-0x000007FEEEAC3000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/616-49-0x000000001AF60000-0x000000001AF6A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-50-0x000007FE97A30000-0x000007FE97A3A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/616-54-0x000007FEF5300000-0x000007FEF5CEC000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/616-55-0x0000000000560000-0x0000000000562000-memory.dmp

    Filesize

    8KB

    Download

  • memory/616-56-0x000007FEEEC10000-0x000007FEEF001000-memory.dmp

    Filesize

    3.9MB

    Download

  • memory/616-57-0x000007FEEE980000-0x000007FEEEAC3000-memory.dmp

    Filesize

    1.3MB

    Download