Overview

overview

7

Static

static

7

DllEmForm.dll

windows7-x64

6

DllEmForm.dll

windows10-2004-x64

6

TYFrame.exe

windows7-x64

7

TYFrame.exe

windows10-2004-x64

7

data/bmnet.sys

windows7-x64

1

data/bmnet.sys

windows10-2004-x64

1

data/drvinst.exe

windows7-x64

1

data/drvinst.exe

windows10-2004-x64

1

data/新云软件.url

windows7-x64

1

data/新云软件.url

windows10-2004-x64

1

libeay32.dll

windows7-x64

1

libeay32.dll

windows10-2004-x64

1

prcdcdll.dll

windows7-x64

6

prcdcdll.dll

windows10-2004-x64

6

ssleay32.dll

windows7-x64

1

ssleay32.dll

windows10-2004-x64

1

tyframe.exe

windows7-x64

1

tyframe.exe

windows10-2004-x64

1

unicallem.dll

windows7-x64

6

unicallem.dll

windows10-2004-x64

6

unins000.exe

windows7-x64

7

unins000.exe

windows10-2004-x64

7

update.exe

windows7-x64

1

update.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240319-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240319-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/04/2024, 03:24

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    tyframe.exe

  • Size

    981KB

  • MD5

    d6f79d061aa638dd20f1ded12d8447ad

  • SHA1

    7263ac01813bac63e87457fc9f28f52defb3b6a6

  • SHA256

    12d2a55d16c7bf1c4b07712a2c80cc78d168af227d73fd0f70c009e0a1af19f0

  • SHA512

    9927fc0e72a3041d63ce768fd095ed79d0c9379eb6a96136554d000d8982a2fc183ffba1563f163aa18318acd07e163a0d61fc285719c4eab72b5503b48c2ba2

  • SSDEEP

    24576:VnlwCaMaqXsay0JzM205aE9pB2ws+58CX:VOCzX1zM2CBHEwTX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\tyframe.exe
    "C:\Users\Admin\AppData\Local\Temp\tyframe.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:4544
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4116 --field-trial-handle=2264,i,7994609493164365963,13212734413040148104,262144 --variations-seed-version /prefetch:8
    1⤵
      PID:1156

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4544-0-0x0000000000400000-0x0000000000688000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/4544-1-0x0000000000400000-0x0000000000688000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/4544-4-0x0000000000D30000-0x0000000000D31000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-3-0x0000000000D10000-0x0000000000D11000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-2-0x0000000000CA0000-0x0000000000CEB000-memory.dmp

      Filesize

      300KB

      Download

    • memory/4544-5-0x0000000002600000-0x0000000002601000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-7-0x0000000000890000-0x0000000000891000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-6-0x0000000000D20000-0x0000000000D21000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-8-0x0000000000D00000-0x0000000000D01000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-10-0x0000000002610000-0x0000000002611000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-9-0x0000000002C00000-0x0000000002C01000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-12-0x00000000026A0000-0x00000000026A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-11-0x0000000002BF0000-0x0000000002BF2000-memory.dmp

      Filesize

      8KB

      Download

    • memory/4544-13-0x0000000002670000-0x0000000002671000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-14-0x0000000002690000-0x0000000002691000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-15-0x0000000002640000-0x0000000002641000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-18-0x0000000002680000-0x0000000002681000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-20-0x0000000002730000-0x0000000002731000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-19-0x0000000002760000-0x0000000002761000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-17-0x00000000026C0000-0x00000000026C1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-16-0x0000000002660000-0x0000000002661000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-21-0x0000000002750000-0x0000000002751000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-23-0x0000000002700000-0x0000000002701000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-22-0x0000000002740000-0x0000000002741000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-24-0x0000000002720000-0x0000000002721000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-25-0x0000000002650000-0x0000000002651000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-26-0x0000000002BE0000-0x0000000002BE2000-memory.dmp

      Filesize

      8KB

      Download

    • memory/4544-27-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-28-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-29-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-30-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-31-0x0000000002C60000-0x0000000002C61000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-32-0x0000000002630000-0x0000000002631000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-33-0x0000000002630000-0x0000000002631000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-34-0x0000000002C70000-0x0000000002C71000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-36-0x0000000002630000-0x0000000002631000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-35-0x0000000002630000-0x0000000002631000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-37-0x0000000000870000-0x0000000000871000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-38-0x0000000000880000-0x0000000000881000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-39-0x0000000002C30000-0x0000000002C31000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-40-0x0000000002C20000-0x0000000002C21000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-41-0x0000000002C10000-0x0000000002C11000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-42-0x0000000002AA0000-0x0000000002AA1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-43-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-44-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-45-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-46-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-47-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-48-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-49-0x00000000025F0000-0x00000000025F1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-50-0x0000000002630000-0x0000000002631000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-52-0x0000000002C40000-0x0000000002C41000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-51-0x0000000002850000-0x0000000002851000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-53-0x0000000000400000-0x0000000000688000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/4544-55-0x0000000000CA0000-0x0000000000CEB000-memory.dmp

      Filesize

      300KB

      Download

    • memory/4544-56-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-57-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-59-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-60-0x0000000002630000-0x0000000002631000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4544-61-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-63-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-65-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-64-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-62-0x0000000002E90000-0x0000000002F10000-memory.dmp

      Filesize

      512KB

      Download

    • memory/4544-58-0x0000000002C80000-0x0000000002D80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/4544-68-0x0000000000400000-0x0000000000688000-memory.dmp

      Filesize

      2.5MB

      Download