Overview

overview

3

Static

static

3

VwMeter/DeLib.dll

windows7-x64

1

VwMeter/DeLib.dll

windows10-2004-x64

1

VwMeter/De...st.dll

windows7-x64

1

VwMeter/De...st.dll

windows10-2004-x64

1

VwMeter/VwMeter.exe

windows7-x64

1

VwMeter/VwMeter.exe

windows10-2004-x64

1

VwMeter/VwUpdate.exe

windows7-x64

1

VwMeter/VwUpdate.exe

windows10-2004-x64

1

VwMeter/�...��.url

windows7-x64

1

VwMeter/�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-03-2024 15:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VwMeter/VwMeter.exe

  • Size

    294KB

  • MD5

    515ea3ec7a961dfdbdf4849d561559f5

  • SHA1

    ca256fc0e38446171e5722b276e05a700dbf4a06

  • SHA256

    7586a222983bac061034d0612bd744abc851bb95f821d6e73e92ef746976b85b

  • SHA512

    00c2ab6e3f6b477561232522daffcb09980d0d9410ab13d4a912ddbededb58bfe47754bd8acb04c0cadaabac8e1e0737eca0bd7cc53290dae34e84d950bae60a

  • SSDEEP

    6144:2i4S+cPWaLTCW3e0dZfFgCZTdsmnEla3ex2v3ANBbwuE:k9cuaF1dTdxGmnOauK9J

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of FindShellTrayWindow 3 IoCs
  • Suspicious use of SendNotifyMessage 3 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\VwMeter\VwMeter.exe
    "C:\Users\Admin\AppData\Local\Temp\VwMeter\VwMeter.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:3000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\VwMeter\cfg.ini
    Filesize

    56B

    MD5

    ae04516249bfb2cc854d213fd611f983

    SHA1

    566b4aeb24e15c9076f0beab5624319e6a864503

    SHA256

    8ecb8833ede79dab7a44c42d286e5c6bb30efb91e115d7767b4537c0b5d3035b

    SHA512

    77ffd795c0c9f7742361afc63d878ba43b0fbb0cfe74e9a85ee08d3ed20e724091b505d4af600594036aed6b512c90bba86f425d22c9d54895a01a7c173b3b25

    Download Submit

  • memory/3000-0-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-27-0x0000000002920000-0x0000000002922000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3000-26-0x0000000002010000-0x0000000002011000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-30-0x0000000002990000-0x0000000002991000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-29-0x0000000002980000-0x0000000002981000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-28-0x00000000029A0000-0x00000000029E0000-memory.dmp

    Filesize

    256KB

    Download

  • memory/3000-25-0x0000000002480000-0x0000000002481000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-24-0x0000000002470000-0x0000000002471000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-23-0x0000000002070000-0x0000000002071000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-22-0x00000000024A0000-0x00000000024A1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-35-0x0000000002960000-0x0000000002961000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-34-0x0000000002970000-0x0000000002971000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-33-0x0000000000280000-0x0000000000281000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-36-0x0000000002950000-0x0000000002951000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-32-0x0000000000270000-0x0000000000271000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-31-0x0000000001D00000-0x0000000001D01000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-21-0x0000000002060000-0x0000000002061000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-20-0x00000000024C0000-0x00000000024C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-19-0x0000000002490000-0x0000000002491000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-18-0x0000000001D80000-0x0000000001D81000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-17-0x0000000001DC0000-0x0000000001DC1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-16-0x0000000001D90000-0x0000000001D91000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-15-0x0000000002030000-0x0000000002031000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-14-0x0000000001D70000-0x0000000001D71000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-13-0x0000000002020000-0x0000000002021000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-12-0x0000000001DB0000-0x0000000001DB1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-11-0x0000000002930000-0x0000000002931000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-10-0x0000000000560000-0x0000000000561000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-9-0x0000000002940000-0x0000000002941000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-8-0x00000000003B0000-0x00000000003B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-7-0x0000000001CE0000-0x0000000001CE1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-6-0x00000000002A0000-0x00000000002A1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-5-0x0000000001CB0000-0x0000000001CB1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-4-0x0000000000290000-0x0000000000291000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-3-0x0000000001CD0000-0x0000000001CD1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-2-0x0000000001CA0000-0x0000000001CA1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3000-1-0x0000000001D20000-0x0000000001D6B000-memory.dmp

    Filesize

    300KB

    Download

  • memory/3000-63-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-79-0x0000000001D20000-0x0000000001D6B000-memory.dmp

    Filesize

    300KB

    Download

  • memory/3000-78-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-84-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-103-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-124-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-147-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-166-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-187-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-210-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-229-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-250-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-269-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-292-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-313-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/3000-332-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download