Overview

overview

3

Static

static

3

Onimusume Yankee.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    13s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240221-en
  • resource tags

    arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    27/03/2024, 21:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Onimusume Yankee.exe

  • Size

    144.0MB

  • MD5

    821479622f86e185cab4ec5fba21d2c6

  • SHA1

    42567285dce1f743b0377de115ab97a6eed81fd8

  • SHA256

    f45fcdf66f506e6e6754d4c7e37c9955a758368ea0b7f7ec15736168cdd4ac3d

  • SHA512

    39e9f544a8e50bd00d2fc5974e87f493853a9fe937341a2ad84e0bb7f957aa739b71a66bdcb5a8c8e5d3e5c11d578f8dd4c57b939963ac3a9bba86bc216dc9fb

  • SSDEEP

    1572864:FfnELRK2A7Yjx0nam+rZ45fdhlpG11jkZ7m5KS1+NICSN4BDzhJIrRwVtN3VXBtL:oPjxO7G11wJoohSN4tXkS3VXBWeSe

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\svchost.exe
    C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
    1⤵
      PID:3716
    • C:\Users\Admin\AppData\Local\Temp\Onimusume Yankee.exe
      "C:\Users\Admin\AppData\Local\Temp\Onimusume Yankee.exe"
      1⤵
      • Suspicious use of SetWindowsHookEx
      PID:4556

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/4556-1-0x00007FF7A8CD0000-0x00007FF7ACFFD000-memory.dmp

            Filesize

            67.2MB

            Download