Overview

overview

6

Static

static

3

PinballXP.zip

windows11-21h2-x64

1

FONT.dat

windows11-21h2-x64

3

PINBALL.dat

windows11-21h2-x64

3

PINBALL.mid

windows11-21h2-x64

1

PINBALL2.mid

windows11-21h2-x64

1

SOUND1.wav

windows11-21h2-x64

6

SOUND104.wav

windows11-21h2-x64

6

SOUND105.wav

windows11-21h2-x64

6

SOUND108.wav

windows11-21h2-x64

6

SOUND111.wav

windows11-21h2-x64

6

SOUND112.wav

windows11-21h2-x64

6

SOUND12.wav

windows11-21h2-x64

1

SOUND13.wav

windows11-21h2-x64

6

SOUND131.wav

windows11-21h2-x64

6

SOUND136.wav

windows11-21h2-x64

6

SOUND14.wav

windows11-21h2-x64

6

SOUND16.wav

windows11-21h2-x64

6

SOUND17.wav

windows11-21h2-x64

6

SOUND18.wav

windows11-21h2-x64

1

SOUND181.wav

windows11-21h2-x64

6

SOUND19.wav

windows11-21h2-x64

6

SOUND20.wav

windows11-21h2-x64

6

SOUND21.wav

windows11-21h2-x64

6

SOUND22.wav

windows11-21h2-x64

6

SOUND24.wav

windows11-21h2-x64

6

SOUND240.wav

windows11-21h2-x64

6

SOUND243.wav

windows11-21h2-x64

6

SOUND25.wav

windows11-21h2-x64

6

SOUND26.wav

windows11-21h2-x64

6

SOUND27.wav

windows11-21h2-x64

1

SOUND28.wav

windows11-21h2-x64

6

SOUND29.wav

windows11-21h2-x64

6

Analysis

  • max time kernel
    146s
  • max time network
    151s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240426-en
  • resource tags

    arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    30/04/2024, 07:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    PinballXP.zip

  • Size

    1.2MB

  • MD5

    8b61bface5ca2580bdb89bf4e38c3c0a

  • SHA1

    5645f836c490cba3c770ea6e6f53de57edf3f629

  • SHA256

    c95f37ac4a63b77b5a5a420ae603552cb71642c578488b784d10775f40be9d21

  • SHA512

    a0e4a5c01b211daa88f07991ffede979d1e44ac3c79e0fbca4ad0c6f13c00c1c8a8475d81c34e5a1deca31102d1a26464dcfd0d36b23a1613b04acfcd1f55791

  • SSDEEP

    24576:RsvoF1R4rPsQLSVvYEn/kPXTlDaI3O25KNecUunqp4h0cn/VZXj:2AVFQLOn/kvTlDf1MeanqpU/VBj

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\Explorer.exe
    C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\PinballXP.zip
    1⤵
      PID:1072
    • C:\Windows\system32\svchost.exe
      C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
      1⤵
        PID:4720
      • C:\Windows\System32\rundll32.exe
        C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
        1⤵
          PID:5108

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads