Overview
overview
10Static
static
3ICQLiteShell.dll
windows7-x64
1ICQLiteShell.dll
windows10-2004-x64
1ICQRT.dll
windows7-x64
3ICQRT.dll
windows10-2004-x64
3Language/WinRar.exe
windows7-x64
1Language/WinRar.exe
windows10-2004-x64
1LiteRes.dll
windows7-x64
1LiteRes.dll
windows10-2004-x64
1LiteSkinUtils.dll
windows7-x64
1LiteSkinUtils.dll
windows10-2004-x64
3bentonite.png
windows7-x64
3bentonite.png
windows10-2004-x64
3setup.exe
windows7-x64
10setup.exe
windows10-2004-x64
9Analysis
-
max time kernel
149s -
max time network
155s -
platform
windows10-2004_x64 -
resource
win10v2004-20240221-en -
resource tags
arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system -
submitted
23-02-2024 08:58
Static task
static1
Behavioral task
behavioral1
Sample
ICQLiteShell.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ICQLiteShell.dll
Resource
win10v2004-20240221-en
Behavioral task
behavioral3
Sample
ICQRT.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
ICQRT.dll
Resource
win10v2004-20240221-en
Behavioral task
behavioral5
Sample
Language/WinRar.exe
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
Language/WinRar.exe
Resource
win10v2004-20240221-en
Behavioral task
behavioral7
Sample
LiteRes.dll
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
LiteRes.dll
Resource
win10v2004-20240221-en
Behavioral task
behavioral9
Sample
LiteSkinUtils.dll
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
LiteSkinUtils.dll
Resource
win10v2004-20240221-en
Behavioral task
behavioral11
Sample
bentonite.png
Resource
win7-20240215-en
Behavioral task
behavioral12
Sample
bentonite.png
Resource
win10v2004-20240221-en
General
-
Target
bentonite.png
-
Size
963KB
-
MD5
e7c43dc3ec4360374043b872f934ec9e
-
SHA1
6514933e53c6eb9594786a773f75595b0eafeaf7
-
SHA256
658ac17f4047ccc594edfd7c038701fe2c72ec2edf4aefe6f3c2dd28ab3dd471
-
SHA512
43b8cb4cacf8bc1e26f7c6af4e58d877287057975b3e28c52d4a3afa478b447a921fbde729ef24be9eb3858c00968455a6873a67e409a6a3fe6a35703470bd6b
-
SSDEEP
24576:gvnQ8rX+HfLmktxk2ZtrWIxff17XIDHVuJnUNObt/D+jQ9e+k:gvnD+SaZt5X2qAyasev
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).