Analysis

  • max time kernel
    150s
  • max time network
    114s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/03/2024, 16:44

General

  • Target

    OpenIVSetup.exe

  • Size

    33.0MB

  • MD5

    58446a05397f2b391ad66c18ac42dd46

  • SHA1

    fbca2ceb4da791983c133d54b44e9f8191b18260

  • SHA256

    3683b717c0651a35fe3a0a5cf8a0a20f19e8a848675005fb08d0152b29857616

  • SHA512

    f5fb192726a75051bb2cdb101a9ec85bbf7015d70568caacd32d9af64690ae6503c7699d860b611275005c3997de6fae1e4490990a40d12d1a7b836db852d991

  • SSDEEP

    786432:JpY72Jimx2oeNm9iePejodLaYLCaYYXTU2vKBorzDa:eUfPeNm9mqHLqYj7a

Score
6/10

Malware Config

Signatures

  • Checks whether UAC is enabled 1 TTPs 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\OpenIVSetup.exe
    "C:\Users\Admin\AppData\Local\Temp\OpenIVSetup.exe"
    1⤵
    • Checks whether UAC is enabled
    • Suspicious behavior: EnumeratesProcesses
    PID:2248

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\OpenIV_Setup_Install.log

          Filesize

          1KB

          MD5

          daac4b53488ab320bc0fd6b07d0a4170

          SHA1

          79ed53233f1726dee0bfbf5f7f229f474fa11b18

          SHA256

          44c4a3df127af23e149c39a8239123dd69be081434cc38bdd7302f96c9e6a7b2

          SHA512

          629701432d0f271397e757e8cbf3437e3bd40cddd1113aa72a602fefa14b2dadff94db1ed101c0e2a73f40b88a8d3e90486be01ef8e0eea1710265f635409e28

        • C:\Users\Admin\AppData\Local\Temp\OpenIV_Setup_Install.log

          Filesize

          5KB

          MD5

          0eaa995de5e49fe55c8918bd5ba849e5

          SHA1

          66cb36073029360158fcf5b42d57288f3c687037

          SHA256

          e7c99f0ba012c5b9ff817b2bd736a4d4e43c5adb5f027224cf7372f87827116f

          SHA512

          30237eedacd9d2860e189a0003502a4cab65d9cd958affa2fbba6bdf38f18915935f555083a9d2c01fad4d464eef68e82d1181a1661152cb14bf67c6549f7275

        • C:\Users\Admin\AppData\Local\Temp\OpenIV_Setup_Install.log

          Filesize

          632B

          MD5

          1fe3e87405b2c9249cb4e67731501024

          SHA1

          332fbc3990ddc22c5198e01ee7c335f877f76464

          SHA256

          71d90b4811f6bee7b27739fbd7573726ca340323cfef9fafcfdd0f7a6d08fcf7

          SHA512

          afec8043c453649045d1a02a12c4f5b86d77f77d703fdffbaf9bc5eeb015a2955b4030aae192c294bd14d1bb41146ff07db59b6412e0578c56508fd3ccc7d958

        • memory/2248-1-0x00000000028E0000-0x00000000028E1000-memory.dmp

          Filesize

          4KB

        • memory/2248-0-0x0000000000400000-0x000000000259D000-memory.dmp

          Filesize

          33.6MB

        • memory/2248-33-0x0000000000400000-0x000000000259D000-memory.dmp

          Filesize

          33.6MB

        • memory/2248-35-0x00000000028E0000-0x00000000028E1000-memory.dmp

          Filesize

          4KB