Analysis

  • max time kernel
    150s
  • max time network
    158s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240508-en
  • resource tags

    arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    25/05/2024, 22:03

General

  • Target

    Browser/TorBrowser/Tor/PluggableTransports/lyrebird.exe

  • Size

    6.8MB

  • MD5

    d13e683bf656c228e69c9d0c053b0d25

  • SHA1

    da5cef24856b4561932b042b029cc12a92d18b38

  • SHA256

    d53dcf8e7a2979607ecee97a4614108062e6c70717120daad664bf8447594d72

  • SHA512

    55150b6c1125541cb48dd1e5117ed9379fba7f25107089b025769eaf79df06bee8e12f31846bf6a131f3a02e3ddf0846accf479b2e0560c7ae2c69faa75c1173

  • SSDEEP

    49152:qqH2dzn7qrb/TIvO90d7HjmAFd4A64nsfJ2SrFDMRS6cwJNVXq7CKKCcGqdbngdh:eZkRGrVqlNongda8REosrns

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Browser\TorBrowser\Tor\PluggableTransports\lyrebird.exe
    "C:\Users\Admin\AppData\Local\Temp\Browser\TorBrowser\Tor\PluggableTransports\lyrebird.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2204

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads