Overview

overview

7

Static

static

3

LomebuGame.rar

windows7-x64

3

LomebuGame.rar

windows10-2004-x64

3

bomelugame...me.exe

windows7-x64

7

bomelugame...me.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDIR/app-64.7z

windows7-x64

3

$PLUGINSDIR/app-64.7z

windows10-2004-x64

7

LICENSE.electron.txt

windows7-x64

1

LICENSE.electron.txt

windows10-2004-x64

1

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

LomebuGame.exe

windows7-x64

1

LomebuGame.exe

windows10-2004-x64

7

chrome_100...nt.pak

windows7-x64

3

chrome_100...nt.pak

windows10-2004-x64

3

chrome_200...nt.pak

windows7-x64

3

chrome_200...nt.pak

windows10-2004-x64

3

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

icudtl.dat

windows7-x64

3

icudtl.dat

windows10-2004-x64

3

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

Resubmissions

27-04-2024 19:36

240427-ybnfasfc9t 7

27-04-2024 19:12

240427-xwpy7afb2v 7

27-04-2024 18:20

240427-wy4ppaed6x 7

Analysis

  • max time kernel
    143s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    27-04-2024 19:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LomebuGame.rar

  • Size

    78.9MB

  • MD5

    d3b29753e900b931d16a9179c90b8658

  • SHA1

    842a771bec88f02b7e5ec945ab3f4a5ce2ed513a

  • SHA256

    05451b195a176fa75fb7a8de600068e1f08b2a0b5cef42eef8439ec28ed26a59

  • SHA512

    d569de1d4ae986385aa37e3cb72cb60f0e54d68f2b6fb08cf26977a054f149f6ec53603e39fb84612d5e4985a0835b05f3808a7f86526e6aaceee058a8744fa2

  • SSDEEP

    1572864:67pRw6rTMzJ0UK+qqgimG2ZXB7NyzUjZiRFVQbqgO9ugYqh75k:6VhvsCUex7NEUcRvYqU

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 2 IoCs
  • Suspicious use of FindShellTrayWindow 15 IoCs
  • Suspicious use of SendNotifyMessage 14 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs
  • Suspicious use of WriteProcessMemory 9 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\LomebuGame.rar
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2844
    • C:\Windows\system32\rundll32.exe
      "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\Admin\AppData\Local\Temp\LomebuGame.rar
      2⤵
      • Modifies registry class
      • Suspicious use of WriteProcessMemory
      PID:2740
      • C:\Windows\system32\rundll32.exe
        "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\Admin\AppData\Local\Temp\LomebuGame.rar
        3⤵
        • Modifies registry class
        • Suspicious behavior: GetForegroundWindowSpam
        • Suspicious use of WriteProcessMemory
        PID:2808
        • C:\Program Files\VideoLAN\VLC\vlc.exe
          "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\LomebuGame.rar"
          4⤵
          • Suspicious behavior: AddClipboardFormatListener
          • Suspicious behavior: GetForegroundWindowSpam
          • Suspicious use of FindShellTrayWindow
          • Suspicious use of SendNotifyMessage
          • Suspicious use of SetWindowsHookEx
          PID:112

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/112-37-0x000007FEFA860000-0x000007FEFA894000-memory.dmp

    Filesize

    208KB

    Download

  • memory/112-36-0x000000013F560000-0x000000013F658000-memory.dmp

    Filesize

    992KB

    Download

  • memory/112-39-0x000007FEFA840000-0x000007FEFA858000-memory.dmp

    Filesize

    96KB

    Download

  • memory/112-40-0x000007FEFA820000-0x000007FEFA837000-memory.dmp

    Filesize

    92KB

    Download

  • memory/112-41-0x000007FEFA800000-0x000007FEFA811000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-42-0x000007FEFA7E0000-0x000007FEFA7F7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/112-43-0x000007FEF7B10000-0x000007FEF7B21000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-44-0x000007FEF7AF0000-0x000007FEF7B0D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/112-45-0x000007FEF7AD0000-0x000007FEF7AE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-38-0x000007FEF5A70000-0x000007FEF5D26000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/112-46-0x000007FEF5730000-0x000007FEF593B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/112-48-0x000007FEF6D20000-0x000007FEF6D61000-memory.dmp

    Filesize

    260KB

    Download

  • memory/112-49-0x000007FEF6CF0000-0x000007FEF6D11000-memory.dmp

    Filesize

    132KB

    Download

  • memory/112-50-0x000007FEF6CD0000-0x000007FEF6CE8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/112-51-0x000007FEF6CB0000-0x000007FEF6CC1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-52-0x000007FEF6190000-0x000007FEF61A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-53-0x000007FEF6170000-0x000007FEF6181000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-54-0x000007FEF6150000-0x000007FEF616B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/112-55-0x000007FEF6130000-0x000007FEF6141000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-56-0x000007FEF6110000-0x000007FEF6128000-memory.dmp

    Filesize

    96KB

    Download

  • memory/112-57-0x000007FEF60E0000-0x000007FEF6110000-memory.dmp

    Filesize

    192KB

    Download

  • memory/112-58-0x000007FEF56C0000-0x000007FEF5727000-memory.dmp

    Filesize

    412KB

    Download

  • memory/112-59-0x000007FEF5640000-0x000007FEF56BC000-memory.dmp

    Filesize

    496KB

    Download

  • memory/112-60-0x000007FEF5620000-0x000007FEF5631000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-61-0x000007FEF55C0000-0x000007FEF5617000-memory.dmp

    Filesize

    348KB

    Download

  • memory/112-62-0x000007FEF5590000-0x000007FEF55B8000-memory.dmp

    Filesize

    160KB

    Download

  • memory/112-63-0x000007FEF5560000-0x000007FEF5584000-memory.dmp

    Filesize

    144KB

    Download

  • memory/112-64-0x000007FEF5540000-0x000007FEF5558000-memory.dmp

    Filesize

    96KB

    Download

  • memory/112-65-0x000007FEF5510000-0x000007FEF5533000-memory.dmp

    Filesize

    140KB

    Download

  • memory/112-66-0x000007FEF54F0000-0x000007FEF5501000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-67-0x000007FEF54D0000-0x000007FEF54E2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/112-68-0x000007FEF3510000-0x000007FEF3521000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-47-0x000007FEF4100000-0x000007FEF51B0000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/112-70-0x000007FEF1630000-0x000007FEF1641000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-71-0x000007FEEFDD0000-0x000007FEEFE27000-memory.dmp

    Filesize

    348KB

    Download

  • memory/112-72-0x000007FEEEF00000-0x000007FEEEF2F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/112-73-0x000007FEEFDB0000-0x000007FEEFDC3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/112-74-0x000007FEEEEE0000-0x000007FEEEEF1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-75-0x000007FEEEE10000-0x000007FEEEED5000-memory.dmp

    Filesize

    788KB

    Download

  • memory/112-69-0x000007FEF1C40000-0x000007FEF34AF000-memory.dmp

    Filesize

    24.4MB

    Download

  • memory/112-76-0x000007FEEEDF0000-0x000007FEEEE03000-memory.dmp

    Filesize

    76KB

    Download

  • memory/112-78-0x000007FEEEDB0000-0x000007FEEEDC4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/112-77-0x000007FEEEDD0000-0x000007FEEEDE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/112-79-0x000007FEEEBA0000-0x000007FEEEDA6000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/112-80-0x000007FEEEB80000-0x000007FEEEB92000-memory.dmp

    Filesize

    72KB

    Download

  • memory/112-81-0x000007FEEEB30000-0x000007FEEEB72000-memory.dmp

    Filesize

    264KB

    Download

  • memory/112-82-0x000007FEEEAE0000-0x000007FEEEB2D000-memory.dmp

    Filesize

    308KB

    Download