Overview

overview

3

Static

static

1

Xeroseps.atn

windows7-x64

3

Xeroseps.atn

windows10-2004-x64

3

Analysis

  • max time kernel
    30s
  • max time network
    33s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    23-05-2024 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Xeroseps.atn

  • Size

    1KB

  • MD5

    f72756fefce775257ea8c75f2417ee7f

  • SHA1

    31480ef38f6b8cb435761c4bd54820cc216ac84e

  • SHA256

    f46f358917e8be39eb90b4439729d9ae2aff8c7d6bb26a8264533c0a98694a31

  • SHA512

    2cc742d2e404e03a4058ffce4e64f9cbf507c665761c397d48022bff1063a380b4771bb14d8ae64c824f3085ac92920eafb8869761fd0ae37ad32ea42d203bfe

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Xeroseps.atn
    1⤵
    • Modifies registry class
    PID:1860
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1852

Network

MITRE ATT&CK Matrix ATT&CK v13

Replay Monitor

Loading Replay Monitor...

Downloads