Overview

overview

7

Static

static

3

Voice.ai-D...e6.exe

windows7-x64

7

Voice.ai-D...e6.exe

windows10-2004-x64

7

$PLUGINSDIR/INetC.dll

windows7-x64

3

$PLUGINSDIR/INetC.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    28/02/2024, 19:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Voice.ai-Downloader-alphaver-9b723f3092ef482f872a65c64b4e52e6.exe

  • Size

    477KB

  • MD5

    48985b2dc70d3b3f52af89466c042eaa

  • SHA1

    d02d63e486096aa195edf28ce5ed9783f114663e

  • SHA256

    0d9751170ae7ed7cef5d3bb97ecb1f24da01473b41b6e09c6cc31f5a93122dc1

  • SHA512

    bb779c4e55ff701c79974b12f1f3231756457bf8f9cc68cabeddf014dbfc44192241ac8c6f3712cd19122aafbaaf18b54dd229889d7092518802c361c813a94f

  • SSDEEP

    3072:fkBGWOsTIJgIDU5A/c9o68pMABlZQ2wpFD0raTluxGYDxJ0yAtQ:f1ssjX5Mp2w7g+pusSN

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 5 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\Voice.ai-Downloader-alphaver-9b723f3092ef482f872a65c64b4e52e6.exe
    "C:\Users\Admin\AppData\Local\Temp\Voice.ai-Downloader-alphaver-9b723f3092ef482f872a65c64b4e52e6.exe"
    1⤵
    • Loads dropped DLL
    PID:2368

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\nsiFE9.tmp\INetC.dll
    Filesize

    21KB

    MD5

    2b342079303895c50af8040a91f30f71

    SHA1

    b11335e1cb8356d9c337cb89fe81d669a69de17e

    SHA256

    2d5d89025911e2e273f90f393624be4819641dbee1606de792362e442e54612f

    SHA512

    550452dadc86ecd205f40668894116790a456fe46e9985d68093d36cf32abf00edecb5c56ff0287464a0e819db7b3cc53926037a116de6c651332a7cc8035d47

    Download Submit

  • \Users\Admin\AppData\Local\Temp\nsiFE9.tmp\System.dll
    Filesize

    12KB

    MD5

    792b6f86e296d3904285b2bf67ccd7e0

    SHA1

    966b16f84697552747e0ddd19a4ba8ab5083af31

    SHA256

    c7a20bcaa0197aedddc8e4797bbb33fdf70d980f5e83c203d148121c2106d917

    SHA512

    97edc3410b88ca31abc0af0324258d2b59127047810947d0fb5e7e12957db34d206ffd70a0456add3a26b0546643ff0234124b08423c2c9ffe9bdec6eb210f2c

    Download Submit