Overview

overview

3

Static

static

1

wickedwhim...__.pyc

windows10-1703-x64

3

wickedwhim...ng.pyc

windows10-1703-x64

3

wickedwhim...er.pyc

windows10-1703-x64

3

wickedwhim...__.pyc

windows10-1703-x64

3

wickedwhim...er.pyc

windows10-1703-x64

3

wickedwhim...er.pyc

windows10-1703-x64

3

wickedwhim...ce.pyc

windows10-1703-x64

3

wickedwhim...gs.pyc

windows10-1703-x64

3

wickedwhim...__.pyc

windows10-1703-x64

3

wickedwhim...on.pyc

windows10-1703-x64

3

wickedwhim...es.pyc

windows10-1703-x64

3

wickedwhim...gs.pyc

windows10-1703-x64

3

wickedwhim...rs.pyc

windows10-1703-x64

3

wickedwhim...es.pyc

windows10-1703-x64

3

wickedwhim...ce.pyc

windows10-1703-x64

3

wickedwhim...as.pyc

windows10-1703-x64

3

wickedwhim...ps.pyc

windows10-1703-x64

3

wickedwhim...bs.pyc

windows10-1703-x64

3

wickedwhim...es.pyc

windows10-1703-x64

3

wickedwhim...es.pyc

windows10-1703-x64

3

wickedwhim...ns.pyc

windows10-1703-x64

3

wickedwhim...sc.pyc

windows10-1703-x64

3

wickedwhim...ds.pyc

windows10-1703-x64

3

wickedwhim...ts.pyc

windows10-1703-x64

3

wickedwhim...hs.pyc

windows10-1703-x64

3

wickedwhim...es.pyc

windows10-1703-x64

3

wickedwhim...ms.pyc

windows10-1703-x64

3

wickedwhim...ts.pyc

windows10-1703-x64

3

wickedwhim...ol.pyc

windows10-1703-x64

3

wickedwhim...ry.pyc

windows10-1703-x64

3

wickedwooh...__.pyc

windows10-1703-x64

3

wickedwooh...ts.pyc

windows10-1703-x64

3

Analysis

  • max time kernel
    69s
  • max time network
    81s
  • platform
    windows10-1703_x64
  • resource
    win10-20240221-en
  • resource tags

    arch:x64arch:x86image:win10-20240221-enlocale:en-usos:windows10-1703-x64system
  • submitted
    09/03/2024, 19:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    wickedwhims/utils_sims.pyc

  • Size

    4KB

  • MD5

    b43e5f3f42d7e6caa04fc9660a9ad00a

  • SHA1

    72fd6a08b6c2d96a8c992cbb0001a2b90d723789

  • SHA256

    42a2710ba816eb46c9c0a738f7802720714cf2ede7c8de23ebda56e835c2a1b7

  • SHA512

    6bda7033369fb3f937d2e2ada5e6fe79de14c32e3bdd39f0dc03801e0442f38737e7dc13867d90f085d9e27a3d318e9727daca876c582db90b9739da3c9a1195

  • SSDEEP

    96:fnzz/3JS6tqOer1rS6tqo1GMO06TSI3OA/7jVJzfw:vg6sQ6esI+4v/w

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\wickedwhims\utils_sims.pyc
    1⤵
    • Modifies registry class
    PID:4476
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:2068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads