Overview
overview
7Static
static
7a075393594...fd.exe
windows7-x64
3a075393594...fd.exe
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3$TEMP/AnVir.exe
windows7-x64
3$TEMP/AnVir.exe
windows10-2004-x64
3AnVir.exe
windows7-x64
3AnVir.exe
windows10-2004-x64
3AnvirHook65.dll
windows7-x64
1AnvirHook65.dll
windows10-2004-x64
1CoreTemp.exe
windows7-x64
1CoreTemp.exe
windows10-2004-x64
1CoreTemp64.exe
windows7-x64
1CoreTemp64.exe
windows10-2004-x64
1ROIntegration.dll
windows7-x64
1ROIntegration.dll
windows10-2004-x64
1VirusTotalUpload.exe
windows7-x64
1VirusTotalUpload.exe
windows10-2004-x64
1reg-organi...up.exe
windows7-x64
7reg-organi...up.exe
windows10-2004-x64
7tweaker.exe
windows7-x64
7tweaker.exe
windows10-2004-x64
7usbhdd.exe
windows7-x64
7usbhdd.exe
windows10-2004-x64
7Analysis
-
max time kernel
149s -
max time network
114s -
platform
windows10-2004_x64 -
resource
win10v2004-20240221-en -
resource tags
arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system -
submitted
23-02-2024 22:07
Behavioral task
behavioral1
Sample
a07539359433b9d0bad2a6d2965346fd.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
a07539359433b9d0bad2a6d2965346fd.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral6
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
$TEMP/AnVir.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral8
Sample
$TEMP/AnVir.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
AnVir.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral10
Sample
AnVir.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
AnvirHook65.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral12
Sample
AnvirHook65.dll
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
CoreTemp.exe
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral14
Sample
CoreTemp.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
CoreTemp64.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral16
Sample
CoreTemp64.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
ROIntegration.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral18
Sample
ROIntegration.dll
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
VirusTotalUpload.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral20
Sample
VirusTotalUpload.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
reg-organizer-setup.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral22
Sample
reg-organizer-setup.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
tweaker.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral24
Sample
tweaker.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
usbhdd.exe
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral26
Sample
usbhdd.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
General
-
Target
VirusTotalUpload.exe
-
Size
153KB
-
MD5
eac393c39ac69ca813acb017cb4ab05f
-
SHA1
1a52d42dc606f515c8832db3d24d48d7cdc8c31d
-
SHA256
0c3bbca54c19d81a3df2229d09bff373b61f7ddb495ac6f247ba15b074b5fc63
-
SHA512
779662c53d83f0e13cd3e17ac5e0ebe275ccd7f5f0e3d7388372082d8ff3701056b8d8e25e6a828a87dcc062c6cd2b6e55b1737d3617dbc1fe9820a335b038a0
-
SSDEEP
3072:UYVPSCWCKoT2gNMLMME6eHEqPpvsTmQwUM7W:UYVPSbCPagmLVE6eHRxnH
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe 4736 VirusTotalUpload.exe