Overview

overview

10

Static

static

1

download_5...orrent

windows7-x64

10

download_5...orrent

windows10-2004-x64

3

Analysis

  • max time kernel
    1645s
  • max time network
    1749s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240419-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05-05-2024 06:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    download_5fdg452d.torrent

  • Size

    24KB

  • MD5

    41b7c70f3cebabf238b279a98a0fb058

  • SHA1

    a57954251390912948907589940ffae483ea1392

  • SHA256

    236abc9e419388c8554fc3d8a0e1fc20dfbf54955052839cddcce7c3fe26834d

  • SHA512

    9ca1643903964b0dd2738f7d85a47d67e05ebb0f2cf97be031fb7cb4b56952d299e87aabe03fdfe9440364195c6adefca23fd955f24e7d026b9b2a8fbc27e763

  • SSDEEP

    768:hmnjxv7cx9MLA0BQf5AlIjTBS44JyVkFNvb0odbi:kR7cx9EufulZ4Omode

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 33 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\download_5fdg452d.torrent
    1⤵
    • Modifies registry class
    PID:1032
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:4396

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads