Overview

overview

3

Static

static

3

lova_sosa.zip

windows11-21h2-x64

1

JSON.ahk

windows11-21h2-x64

3

credits.txt

windows11-21h2-x64

3

juke.exe

windows11-21h2-x64

1

settings.json

windows11-21h2-x64

3

Analysis

  • max time kernel
    7s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240221-en
  • resource tags

    arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    25/02/2024, 00:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    juke.exe

  • Size

    1.3MB

  • MD5

    85aeab884be9b98d77b22d5a1b4c8ec5

  • SHA1

    45fc5dae203cedc3886fc957527d4c26c8ec7fc7

  • SHA256

    03a957a9f2bebe2e5fc173cf246e1736a72106a688475803aff4614a535f4cda

  • SHA512

    75cc1a44143254b10f93892b8f06c5bda22a160dd253655e8b0e1bd585dea126340667b26adcf5c9f287b87cf20d794a9d2c89148e17946d6c1801b89803c309

  • SSDEEP

    24576:IdofGAmSIQ177wZ+A7MjiiRDXU/Sat5RgsLSmIOHsU5zMmX1xYwncqKvGqzMSeMU:IdofGbSIQ177wZvYjiiRDXASat5RgsLs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\juke.exe
    "C:\Users\Admin\AppData\Local\Temp\juke.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4212

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads