Overview

overview

8

Static

static

1

poliigon-a...emy.py

windows10-2004-x64

8

poliigon-a...tte.py

windows10-2004-x64

3

poliigon-a...ite.py

windows10-2004-x64

3

poliigon-a...lib.py

windows10-2004-x64

3

poliigon-a...rry.py

windows10-2004-x64

3

poliigon-a...ing.py

windows10-2004-x64

3

poliigon-a...ado.py

windows10-2004-x64

3

poliigon-a...ond.py

windows10-2004-x64

3

poliigon-a...sgi.py

windows10-2004-x64

3

poliigon-a...ics.py

windows10-2004-x64

3

poliigon-a...tor.py

windows10-2004-x64

3

poliigon-a...ler.py

windows10-2004-x64

3

poliigon-a...ope.py

windows10-2004-x64

3

poliigon-a...ber.py

windows10-2004-x64

3

poliigon-a...zer.py

windows10-2004-x64

3

poliigon-a...ion.py

windows10-2004-x64

3

poliigon-a...ons.py

windows10-2004-x64

3

poliigon-a...ght.py

windows10-2004-x64

3

poliigon-a...ing.py

windows10-2004-x64

3

poliigon-a...ils.py

windows10-2004-x64

3

poliigon-a...py2.py

windows10-2004-x64

3

poliigon-a...py3.py

windows10-2004-x64

3

poliigon-a...ort.py

windows10-2004-x64

3

poliigon-a...ils.py

windows10-2004-x64

3

poliigon-a...ker.py

windows10-2004-x64

3

poliigon-a...ors.py

windows10-2004-x64

3

poliigon-a...ces.py

windows10-2004-x64

3

poliigon-a...ops.py

windows10-2004-x64

3

poliigon-a...ing.py

windows10-2004-x64

3

poliigon-a...box.py

windows10-2004-x64

3

poliigon-a.../ui.py

windows10-2004-x64

3

poliigon-a...ils.py

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10-03-2024 12:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    poliigon-addon-blender/modules/sentry_sdk/integrations/stdlib.py

  • Size

    8KB

  • MD5

    180970007afca8fab460f7ead9a58543

  • SHA1

    0d6b60469572b9292a9cea8a79142c4b363b1b5f

  • SHA256

    ff37d1f953ad806e4181e19c564f8a3cb2e433dd9d2065e92315ae8d0112b70f

  • SHA512

    a01e9d8ca2b0c898c0d686b394adfaf8c8b6a56b7a01a4144766388f8e6b5056693f56e673fe6b44523d9b5aef55fe515c3a78dd84ec49ac3bffdd8e160780cd

  • SSDEEP

    96:r69w0wqU9rS917T7r7u7h8copSWTAPpenOJXeuFfET1GcgBpJT7R8j:rlqUhS17c8GPJXeu6RGB7T8j

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\poliigon-addon-blender\modules\sentry_sdk\integrations\stdlib.py
    1⤵
    • Modifies registry class
    PID:1356
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1688
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=1340 --field-trial-handle=2236,i,5367110156796017614,12594004256180761011,262144 --variations-seed-version /prefetch:8
    1⤵
      PID:4908

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads