14901b9821d4b33d3f6205108cc88ddb5886da1e78b250dc6994e7587e847e6e

Submit
Reports

Overview

overview

Static

static

GalaxyPr00...3v.rar

windows7-x64

GalaxyPr00...3v.rar

windows10-2004-x64

HellPr0jec...yl.wsf

windows7-x64

HellPr0jec...yl.wsf

windows10-2004-x64

HellPr0jec...ck.xml

windows7-x64

HellPr0jec...ck.xml

windows10-2004-x64

HellPr0jec...re.xml

windows7-x64

HellPr0jec...re.xml

windows10-2004-x64

HellPr0jec...ha.wsf

windows7-x64

HellPr0jec...ha.wsf

windows10-2004-x64

HellPr0jec...ed.wsf

windows7-x64

HellPr0jec...ed.wsf

windows10-2004-x64

HellPr0jec...et.xml

windows7-x64

HellPr0jec...et.xml

windows10-2004-x64

HellPr0jec...te.xml

windows7-x64

HellPr0jec...te.xml

windows10-2004-x64

HellPr0jec...wa.xml

windows7-x64

HellPr0jec...wa.xml

windows10-2004-x64

HellPr0jec...op.xml

windows7-x64

HellPr0jec...op.xml

windows10-2004-x64

HellPr0jec...ch.xml

windows7-x64

HellPr0jec...ch.xml

windows10-2004-x64

HellPr0jec...te.xml

windows7-x64

HellPr0jec...te.xml

windows10-2004-x64

HellPr0jec...il.xml

windows7-x64

HellPr0jec...il.xml

windows10-2004-x64

HellPr0jec...mp.xml

windows7-x64

HellPr0jec...mp.xml

windows10-2004-x64

HellPr0jec...iv.xml

windows7-x64

HellPr0jec...iv.xml

windows10-2004-x64

HellPr0jec...on.xml

windows7-x64

HellPr0jec...on.xml

windows10-2004-x64

Resubmissions

31/05/2024, 19:12

240531-xww3haah36 10

31/05/2024, 19:08

240531-xtpkmsag46 7

Analysis

max time kernel
135s
max time network
107s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
31/05/2024, 19:08

Sharing

Copy URL

Twitter E-mail

Static task

static1

pdf link

2 signatures

Behavioral task

behavioral1

Sample

GalaxyPr00j33ct2.53v.rar

Resource

win7-20240508-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

GalaxyPr00j33ct2.53v.rar

Resource

win10v2004-20240508-en

persistence

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral3

Sample

HellPr0ject.4.36ver/About/shily/tuner/laurelOleoyl.wsf

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

HellPr0ject.4.36ver/About/shily/tuner/laurelOleoyl.wsf

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/abbayeGweduck.xml

Resource

win7-20231129-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/abbayeGweduck.xml

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/enemasSacre.xml

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral8

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/enemasSacre.xml

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/gotha.wsf

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/gotha.wsf

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/hexogenTackled.wsf

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/hexogenTackled.wsf

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/knubDatapacAbet.xml

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral14

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/knubDatapacAbet.xml

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/pandoraKoppite.xml

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral16

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/pandoraKoppite.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/phulwa.xml

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral18

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/phulwa.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/shop.xml

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral20

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/shop.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/snugsTech.xml

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral22

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/snugsTech.xml

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/splite.xml

Resource

win7-20231129-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral24

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/splite.xml

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/strigalTimothyCuttail.xml

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral26

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/strigalTimothyCuttail.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/zingsGeobiosHemp.xml

Resource

win7-20240215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral28

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/zingsGeobiosHemp.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/zingyAnniv.xml

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral30

Sample

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/zingyAnniv.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

HellPr0ject.4.36ver/About/shily/tuner/vesteeOctodon.xml

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral32

Sample

HellPr0ject.4.36ver/About/shily/tuner/vesteeOctodon.xml

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

HellPr0ject.4.36ver/About/shily/tuner/rephaelGoxesBrasses/pandoraKoppite.xml
Size

4KB
MD5

eac4fba24ab6d66f4273b0c7e9ceaca7
SHA1

1060a92a4cac0956326e8cd4c9adb3c92808acb2
SHA256

1c46e9d6dba0ebc0f6ae186dc16077b7a99f0dd491e64d38e9ddcd5093a5c748
SHA512

6b493391d02a2c992fa95dd377ae0c84d5c6a06f7c236f86389e09a106570be2db506fa386603cc5d352d8c773c430df40e2d66c5dffa3da57be57e1abcd08e7
SSDEEP

96:IQ5dMjrr5ecisgriCtGtlj02q4wUAcOIHG4y7:IfjDgriCsLX9waOpT7

Score

1^/10

Malware Config

Signatures

Processes

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\HellPr0ject.4.36ver\About\shily\tuner\rephaelGoxesBrasses\pandoraKoppite.xml"
1⤵
PID:3952

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3952-0-0x00007FFDB2E90000-0x00007FFDB2EA0000-memory.dmp

Filesize
64KB

Download
memory/3952-2-0x00007FFDF2E10000-0x00007FFDF3005000-memory.dmp

Filesize
2.0MB

Download
memory/3952-1-0x00007FFDF2EAD000-0x00007FFDF2EAE000-memory.dmp

Filesize
4KB

Download
memory/3952-3-0x00007FFDF2E10000-0x00007FFDF3005000-memory.dmp

Filesize
2.0MB

Download