728e1ac24c9bc5cfea93817c7fbc3f47571b6abfb202ac305b5b1e73efe6da67

Submit
Reports

Overview

overview

Static

static

mobiunlock...06.zip

windows7-x64

mobiunlock...06.zip

windows10-2004-x64

mobiunlock...06.exe

windows7-x64

mobiunlock...06.exe

windows10-2004-x64

$TEMP/down...ad.ini

windows7-x64

$TEMP/down...ad.ini

windows10-2004-x64

$TEMP/down...ch.ini

windows7-x64

$TEMP/down...ch.ini

windows10-2004-x64

$TEMP/down...er.exe

windows7-x64

$TEMP/down...er.exe

windows10-2004-x64

$TEMP/down...ch.ini

windows7-x64

$TEMP/down...ch.ini

windows10-2004-x64

$TEMP/down...an.ini

windows7-x64

$TEMP/down...an.ini

windows10-2004-x64

$TEMP/down...re.ini

windows7-x64

$TEMP/down...re.ini

windows10-2004-x64

$TEMP/down...an.ini

windows7-x64

$TEMP/down...an.ini

windows10-2004-x64

$TEMP/down...se.ini

windows7-x64

$TEMP/down...se.ini

windows10-2004-x64

$TEMP/down...an.ini

windows7-x64

$TEMP/down...an.ini

windows10-2004-x64

$TEMP/down...or.ini

windows7-x64

$TEMP/down...or.ini

windows10-2004-x64

$TEMP/down...se.ini

windows7-x64

$TEMP/down...se.ini

windows10-2004-x64

$TEMP/down...sh.ini

windows7-x64

$TEMP/down...sh.ini

windows10-2004-x64

$TEMP/down...ig.ini

windows7-x64

$TEMP/down...ig.ini

windows10-2004-x64

$TEMP/down...g2.ini

windows7-x64

$TEMP/down...g2.ini

windows10-2004-x64

Analysis

max time kernel
145s
max time network
161s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
19/03/2024, 19:36

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

mobiunlock_installerB_20230717.716906.zip

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

mobiunlock_installerB_20230717.716906.zip

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

mobiunlock_installerB_20230717.716906.exe

Resource

win7-20240221-en

windows7-x64

27 signatures

150 seconds

Behavioral task

behavioral4

Sample

mobiunlock_installerB_20230717.716906.exe

Resource

win10v2004-20240226-en

discovery

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral5

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/ChineseTrad.ini

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/ChineseTrad.ini

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Dutch.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Dutch.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/EDownloader.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/EDownloader.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/French.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/French.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/German.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/German.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/InitConfigure.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/InitConfigure.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Italian.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Italian.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Japanese.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Japanese.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Korean.ini

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Korean.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/LanguageTransfor.ini

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/LanguageTransfor.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Portuguese.ini

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Portuguese.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Spanish.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/Spanish.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/aliyun/AliyunConfig.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/aliyun/AliyunConfig.ini

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/aliyun/AliyunConfig2.ini

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

$TEMP/downloader_easeus/1.0.0/9trialB/aliyun/AliyunConfig2.ini

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

$TEMP/downloader_easeus/1.0.0/9trialB/German.ini
Size

3KB
MD5

e8fa085d734c5aeddd0f90c3dd59986c
SHA1

746f9e77fb75eb6903f163db21e83b96a368fb93
SHA256

4afccd02648fe1e3a34ecf2f173e9c6e4437c9acc6a21073f6e6670bbf9162ee
SHA512

ce9fd130d7efdb04f718b5d48aa1f4ab25c975f2d80baa8c25bf09ab97d0235d05fc6a7fc5d5256759bd1c03282e6b778ad7275b6f5c7451da31b54c2ff561bd

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\$TEMP\downloader_easeus\1.0.0\9trialB\German.ini
1⤵
PID:2208

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4088 --field-trial-handle=2280,i,11703952675008463361,17436195144517971517,262144 --variations-seed-version /prefetch:8
1⤵
PID:5104

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads