Overview

overview

10

Static

static

1

Pantheon O... ).bat

windows7-x64

1

Pantheon O... ).bat

windows10-2004-x64

8

Pantheon O... ).bat

windows7-x64

1

Pantheon O... ).bat

windows10-2004-x64

3

Pantheon O... ).bat

windows7-x64

10

Pantheon O... ).bat

windows10-2004-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10-03-2024 04:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Pantheon OPTI/#STEP 2 ( MAIN UI ).bat

  • Size

    2KB

  • MD5

    217c51f006d0b1d34baa9c258b98a5c2

  • SHA1

    a99b1bd9f5ba6eb2714e536ef628816c7fc85ee4

  • SHA256

    433d0e62e064de952432a96e24b8d3ee4527137f633577159e7cdc5bbe76940e

  • SHA512

    1a607fe0cc13760d7c25d7e56907d62dda85961affadf3ce08864d6f9400b2a893bb563a3ea31c624b569604e75216a9e587c282a8031ed5cf01cd84287cf8db

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\Pantheon OPTI\#STEP 2 ( MAIN UI ).bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1836
    • C:\Windows\system32\chcp.com
      chcp 65001
      2⤵
        PID:4800

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads