Overview

overview

3

Static

static

1

GorillaLocomotion.gz

windows11-21h2-x64

3

archtemp.tar

windows11-21h2-x64

3

195efefc38...t.meta

windows11-21h2-x64

3

195efefc38...thname

windows11-21h2-x64

1

2b537a3c88...t.meta

windows11-21h2-x64

3

2b537a3c88...thname

windows11-21h2-x64

1

3b0b8d2763...t.meta

windows11-21h2-x64

3

3b0b8d2763...thname

windows11-21h2-x64

1

70e84f0f51...t.meta

windows11-21h2-x64

3

70e84f0f51...thname

windows11-21h2-x64

1

9a3df7b827.../asset

windows11-21h2-x64

1

9a3df7b827...t.meta

windows11-21h2-x64

3

9a3df7b827...thname

windows11-21h2-x64

1

9fc0d4010b.../asset

windows11-21h2-x64

1

9fc0d4010b...t.meta

windows11-21h2-x64

3

9fc0d4010b...thname

windows11-21h2-x64

1

a18dcb4be0.../asset

windows11-21h2-x64

1

a18dcb4be0...t.meta

windows11-21h2-x64

3

a18dcb4be0...thname

windows11-21h2-x64

1

ce5c2251d7.../asset

windows11-21h2-x64

1

ce5c2251d7...t.meta

windows11-21h2-x64

3

ce5c2251d7...thname

windows11-21h2-x64

1

ce5c2251d7...ew.png

windows11-21h2-x64

3

dd85442b7d.../asset

windows11-21h2-x64

1

dd85442b7d...t.meta

windows11-21h2-x64

3

dd85442b7d...thname

windows11-21h2-x64

1

e76004e2b3...t.meta

windows11-21h2-x64

3

e76004e2b3...thname

windows11-21h2-x64

1

fe83534676...t.meta

windows11-21h2-x64

3

fe83534676...thname

windows11-21h2-x64

1

Resubmissions

19/04/2024, 12:17

240419-pge7facf4x 3

19/04/2024, 12:17

240419-pf52gabe79 3

19/04/2024, 12:17

240419-pf1fzsbe69 1

19/04/2024, 12:16

240419-pfr5lsbe65 3

Analysis

  • max time kernel
    1444s
  • max time network
    1488s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240412-en
  • resource tags

    arch:x64arch:x86image:win11-20240412-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    19/04/2024, 12:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a18dcb4be0dacd14f9bb6fd32d26e078/asset.meta

  • Size

    243B

  • MD5

    f7c6ea6acbeae653228336b8e20eb2a0

  • SHA1

    6245dc444a3b9d19997f31a604eed21672733485

  • SHA256

    b031b181a370c05aebf679878039962b6e54fbbceee9ff63bc232a2a4ff98980

  • SHA512

    e85f1ab05e966ef9dc50389ebc7633f8bf6eb8a1e30a11325a8bfddc82766d1682bbdf4540c074859afc8f38685f207fc8a14c9c6953db0ade79e7ce94556d56

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\a18dcb4be0dacd14f9bb6fd32d26e078\asset.meta
    1⤵
    • Modifies registry class
    PID:2060
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1872

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads