Overview

overview

3

Static

static

3

Gorilla Tag.zip

windows11-21h2-x64

1

Gorilla Ta...me.dll

windows11-21h2-x64

1

Gorilla Ta...ources

windows11-21h2-x64

1

Gorilla Ta..._extra

windows11-21h2-x64

1

Gorilla Ta...s.json

windows11-21h2-x64

3

Gorilla Ta...s.json

windows11-21h2-x64

3

Gorilla Ta...p.info

windows11-21h2-x64

3

Gorilla Ta...config

windows11-21h2-x64

3

Gorilla Ta...nagers

windows11-21h2-x64

1

Gorilla Ta...assets

windows11-21h2-x64

3

Gorilla Ta...s.ress

windows11-21h2-x64

3

Gorilla Ta...level0

windows11-21h2-x64

1

Gorilla Ta...0.ress

windows11-21h2-x64

3

Gorilla Ta...level1

windows11-21h2-x64

1

Gorilla Ta...1.ress

windows11-21h2-x64

3

Gorilla Ta...level2

windows11-21h2-x64

1

Gorilla Ta...2.ress

windows11-21h2-x64

3

Gorilla Ta...level3

windows11-21h2-x64

1

Gorilla Ta...3.ress

windows11-21h2-x64

3

Gorilla Ta...level4

windows11-21h2-x64

1

Gorilla Ta...4.ress

windows11-21h2-x64

3

Gorilla Ta...level5

windows11-21h2-x64

1

Gorilla Ta...5.ress

windows11-21h2-x64

3

Gorilla Ta...level6

windows11-21h2-x64

1

Gorilla Ta...6.ress

windows11-21h2-x64

3

Gorilla Ta...level7

windows11-21h2-x64

1

Gorilla Ta...7.ress

windows11-21h2-x64

3

Gorilla Ta...assets

windows11-21h2-x64

3

Gorilla Ta...s.ress

windows11-21h2-x64

3

Gorilla Ta...assets

windows11-21h2-x64

3

Gorilla Ta...og.txt

windows11-21h2-x64

3

Gorilla Ta...ig.ini

windows11-21h2-x64

3

Resubmissions

10/03/2024, 02:18

240310-cre8zahf77 3

10/03/2024, 01:40

240310-b3qneagf77 3

Analysis

  • max time kernel
    9s
  • max time network
    145s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240221-en
  • resource tags

    arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    10/03/2024, 01:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Gorilla Tag/Gorilla Tag_Data/app.info

  • Size

    25B

  • MD5

    6be3ac14897729b8f4c837b3a18694ca

  • SHA1

    c407ba7a2439819035ac8fc34756f7942f9d2f5a

  • SHA256

    1517749f589e05549598043cdf04a90f9d0fe42ee99353f8ec660711303f8c15

  • SHA512

    d4b1a7a259c38a6e741a49a0767a0cf4f2dd416ddad2ef695156597296fb1a1069a2aed05223df0dcc0849c7d1380b594e1c55ed3debaa90e73bf35bc19e7606

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Gorilla Tag\Gorilla Tag_Data\app.info"
    1⤵
    • Modifies registry class
    PID:3864
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1568

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads