99cb0f92c60d88aadbb3e821f277ab51f6d8861c202cc1e16bb9ff0da10348a9

Submit
Reports

Overview

overview

Static

static

0225a30270...24.exe

windows10-1703-x64

0225a30270...24.exe

windows7-x64

0225a30270...24.exe

windows10-2004-x64

0225a30270...24.exe

windows11-21h2-x64

05072a7ec4...7f.exe

windows10-1703-x64

05072a7ec4...7f.exe

windows7-x64

05072a7ec4...7f.exe

windows10-2004-x64

05072a7ec4...7f.exe

windows11-21h2-x64

1fca1cd049...77.exe

windows10-1703-x64

1fca1cd049...77.exe

windows7-x64

1fca1cd049...77.exe

windows10-2004-x64

1fca1cd049...77.exe

windows11-21h2-x64

20bab94e6d...52.exe

windows10-1703-x64

20bab94e6d...52.exe

windows7-x64

20bab94e6d...52.exe

windows10-2004-x64

20bab94e6d...52.exe

windows11-21h2-x64

2704e269fb...66.exe

windows10-1703-x64

2704e269fb...66.exe

windows7-x64

2704e269fb...66.exe

windows10-2004-x64

2704e269fb...66.exe

windows11-21h2-x64

2cbb3497bf...2d.dll

windows10-1703-x64

2cbb3497bf...2d.dll

windows7-x64

2cbb3497bf...2d.dll

windows10-2004-x64

2cbb3497bf...2d.dll

windows11-21h2-x64

37546b811e...f6.exe

windows10-1703-x64

37546b811e...f6.exe

windows7-x64

37546b811e...f6.exe

windows10-2004-x64

37546b811e...f6.exe

windows11-21h2-x64

49d828087c...2d.exe

windows10-1703-x64

49d828087c...2d.exe

windows7-x64

49d828087c...2d.exe

windows10-2004-x64

49d828087c...2d.exe

windows11-21h2-x64

Analysis

max time kernel
1793s
max time network
1803s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
18-05-2024 15:47

Sharing

Copy URL

Twitter E-mail

Static task

static1

agenda yanluowang

4 signatures

Behavioral task

behavioral1

Sample

0225a30270e5361e410453d4fb0501eb759612f6048ad43591b559d835720224.exe

Resource

win10-20240404-en

windows10-1703-x64

1 signatures

1800 seconds

Behavioral task

behavioral2

Sample

0225a30270e5361e410453d4fb0501eb759612f6048ad43591b559d835720224.exe

Resource

win7-20240221-en

windows7-x64

3 signatures

1800 seconds

Behavioral task

behavioral3

Sample

0225a30270e5361e410453d4fb0501eb759612f6048ad43591b559d835720224.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral4

Sample

0225a30270e5361e410453d4fb0501eb759612f6048ad43591b559d835720224.exe

Resource

win11-20240426-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral5

Sample

05072a7ec455fdf0977f69d49dcaaf012c403c9d39861fa2216eae19c160527f.exe

Resource

win10-20240404-en

defense_evasion evasion execution impact persistence ransomware trojan

windows10-1703-x64

16 signatures

1800 seconds

Behavioral task

behavioral6

Sample

05072a7ec455fdf0977f69d49dcaaf012c403c9d39861fa2216eae19c160527f.exe

Resource

win7-20240221-en

defense_evasion evasion execution impact persistence ransomware trojan

windows7-x64

16 signatures

1800 seconds

Behavioral task

behavioral7

Sample

05072a7ec455fdf0977f69d49dcaaf012c403c9d39861fa2216eae19c160527f.exe

Resource

win10v2004-20240508-en

defense_evasion evasion execution impact persistence ransomware trojan

windows10-2004-x64

16 signatures

1800 seconds

Behavioral task

behavioral8

Sample

05072a7ec455fdf0977f69d49dcaaf012c403c9d39861fa2216eae19c160527f.exe

Resource

win11-20240426-en

defense_evasion evasion execution impact persistence ransomware trojan

windows11-21h2-x64

15 signatures

1800 seconds

Behavioral task

behavioral9

Sample

1fca1cd04992e0fcaa714d9dfa97323d81d7e3d43a024ec37d1c7a2767a17577.exe

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

1fca1cd04992e0fcaa714d9dfa97323d81d7e3d43a024ec37d1c7a2767a17577.exe

Resource

win7-20240215-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

1fca1cd04992e0fcaa714d9dfa97323d81d7e3d43a024ec37d1c7a2767a17577.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

1fca1cd04992e0fcaa714d9dfa97323d81d7e3d43a024ec37d1c7a2767a17577.exe

Resource

win11-20240426-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe

Resource

win11-20240508-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral17

Sample

2704e269fb5cf9a02070a0ea07d82dc9d87f2cb95e60cb71d6c6d38b01869f66.exe

Resource

win10-20240404-en

phobos defense_evasion evasion execution impact persistence ransomware spyware stealer

windows10-1703-x64

20 signatures

1800 seconds

Behavioral task

behavioral18

Sample

2704e269fb5cf9a02070a0ea07d82dc9d87f2cb95e60cb71d6c6d38b01869f66.exe

Resource

win7-20240508-en

phobos defense_evasion evasion execution impact persistence ransomware spyware stealer

windows7-x64

19 signatures

1800 seconds

Behavioral task

behavioral19

Sample

2704e269fb5cf9a02070a0ea07d82dc9d87f2cb95e60cb71d6c6d38b01869f66.exe

Resource

win10v2004-20240508-en

phobos defense_evasion evasion execution impact persistence ransomware spyware stealer

windows10-2004-x64

20 signatures

1800 seconds

Behavioral task

behavioral20

Sample

2704e269fb5cf9a02070a0ea07d82dc9d87f2cb95e60cb71d6c6d38b01869f66.exe

Resource

win11-20240508-en

phobos defense_evasion evasion execution impact persistence ransomware spyware stealer

windows11-21h2-x64

20 signatures

1800 seconds

Behavioral task

behavioral21

Sample

2cbb3497bfa28d9966c1feeae96d452d.dll

Resource

win10-20240404-en

quantum ransomware

windows10-1703-x64

9 signatures

1800 seconds

Behavioral task

behavioral22

Sample

2cbb3497bfa28d9966c1feeae96d452d.dll

Resource

win7-20240508-en

quantum ransomware

windows7-x64

13 signatures

1800 seconds

Behavioral task

behavioral23

Sample

2cbb3497bfa28d9966c1feeae96d452d.dll

Resource

win10v2004-20240508-en

quantum ransomware spyware stealer

windows10-2004-x64

13 signatures

1800 seconds

Behavioral task

behavioral24

Sample

2cbb3497bfa28d9966c1feeae96d452d.dll

Resource

win11-20240426-en

quantum ransomware spyware stealer

windows11-21h2-x64

10 signatures

1800 seconds

Behavioral task

behavioral25

Sample

37546b811e369547c8bd631fa4399730d3bdaff635e744d83632b74f44f56cf6.exe

Resource

win10-20240404-en

agenda ransomware

windows10-1703-x64

1 signatures

1800 seconds

Behavioral task

behavioral26

Sample

37546b811e369547c8bd631fa4399730d3bdaff635e744d83632b74f44f56cf6.exe

Resource

win7-20240508-en

agenda ransomware

windows7-x64

1 signatures

1800 seconds

Behavioral task

behavioral27

Sample

37546b811e369547c8bd631fa4399730d3bdaff635e744d83632b74f44f56cf6.exe

Resource

win10v2004-20240226-en

agenda ransomware

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral28

Sample

37546b811e369547c8bd631fa4399730d3bdaff635e744d83632b74f44f56cf6.exe

Resource

win11-20240426-en

agenda ransomware

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral29

Sample

49d828087ca77abc8d3ac2e4719719ca48578b265bbb632a1a7a36560ec47f2d.exe

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral30

Sample

49d828087ca77abc8d3ac2e4719719ca48578b265bbb632a1a7a36560ec47f2d.exe

Resource

win7-20240508-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

49d828087ca77abc8d3ac2e4719719ca48578b265bbb632a1a7a36560ec47f2d.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

49d828087ca77abc8d3ac2e4719719ca48578b265bbb632a1a7a36560ec47f2d.exe

Resource

win11-20240426-en

windows11-21h2-x64

0 signatures

1800 seconds

Report Analysis Logs

General

Target

20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe
Size

3.3MB
MD5

bc292d6f5c3ed8bf4165eb5b2c88fede
SHA1

acf5a996668cc5f90ca677c19587e568f41fbdfa
SHA256

20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352
SHA512

e66a5af265785031c3126ac13927101295b6b3e8024eef434004c8eb7ba05f38866a84282551c93a5b96e63cbcccd34623e9b28f9975a3ab68cf51ebb9727b69
SSDEEP

49152:F+qq5l3uaUp/rb/TuvO90dL3BmAFd4A64nsfJp9xTq91OmwwasZV45El0gPup6vb:M35yQcZvE4wY

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe
"C:\Users\Admin\AppData\Local\Temp\20bab94e6d9c8ed4832ce3b58f9150b16f9e5f40ffdcb747e10366cab5a30352.exe"
1⤵
PID:3176

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4136 --field-trial-handle=3192,i,2785050981002401924,4037047756083432660,262144 --variations-seed-version /prefetch:8
1⤵
PID:1492

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4152 --field-trial-handle=3192,i,2785050981002401924,4037047756083432660,262144 --variations-seed-version /prefetch:8
1⤵
PID:1888

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads