0993417392ac64907e7906589923664fca44cfb864cc5a55d9bd601d7182d34b

Submit
Reports

Overview

overview

Static

static

setup.exe

windows7-x64

setup.exe

windows10-2004-x64

$PLUGINSDI...ls.dll

windows7-x64

$PLUGINSDI...ls.dll

windows10-2004-x64

$PLUGINSDI...em.dll

windows7-x64

$PLUGINSDI...em.dll

windows10-2004-x64

$PLUGINSDIR/UAC.dll

windows7-x64

$PLUGINSDIR/UAC.dll

windows10-2004-x64

$PLUGINSDI...ll.dll

windows7-x64

$PLUGINSDI...ll.dll

windows10-2004-x64

$PLUGINSDIR/app-64.7z

windows7-x64

$PLUGINSDIR/app-64.7z

windows10-2004-x64

resources/...SE.txt

windows7-x64

resources/...SE.txt

windows10-2004-x64

resources/.../Ap4.h

windows7-x64

resources/.../Ap4.h

windows10-2004-x64

resources/...Atom.h

windows7-x64

resources/...Atom.h

windows10-2004-x64

resources/...rser.h

windows7-x64

resources/...rser.h

windows10-2004-x64

resources/...rser.h

windows7-x64

resources/...rser.h

windows10-2004-x64

resources/...tils.h

windows7-x64

resources/...tils.h

windows10-2004-x64

resources/...rser.h

windows7-x64

resources/...rser.h

windows10-2004-x64

resources/...pher.h

windows7-x64

resources/...pher.h

windows10-2004-x64

resources/...Atom.h

windows7-x64

resources/...Atom.h

windows10-2004-x64

resources/...rray.h

windows7-x64

resources/...rray.h

windows10-2004-x64

Resubmissions

Analysis

max time kernel
120s
max time network
144s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
03/06/2024, 13:04

Sharing

Copy URL

Twitter E-mail

Static task

static1

pdf link

2 signatures

Behavioral task

behavioral1

Sample

setup.exe

Resource

win7-20240508-en

discovery

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

setup.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240419-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/UAC.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/UAC.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/WinShell.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

$PLUGINSDIR/app-64.7z

Resource

win7-20240220-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral12

Sample

$PLUGINSDIR/app-64.7z

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/docs/LICENSE.txt

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/docs/LICENSE.txt

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4.h

Resource

win7-20240215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4.h

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap48bdlAtom.h

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap48bdlAtom.h

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Ac3Parser.h

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Ac3Parser.h

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Ac4Parser.h

Resource

win7-20240220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Ac4Parser.h

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Ac4Utils.h

Resource

win7-20240215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Ac4Utils.h

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4AdtsParser.h

Resource

win7-20240508-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4AdtsParser.h

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4AesBlockCipher.h

Resource

win7-20231129-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral28

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4AesBlockCipher.h

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4AinfAtom.h

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral30

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4AinfAtom.h

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Array.h

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral32

Sample

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/include/Ap4Array.h

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

resources/app.asar.unpacked/node_modules/@wickednesspro/bento4-latest/src/platforms/darwin-x64/docs/LICENSE.txt
Size

18KB
MD5

822717c53f65e1503299956574d84ae0
SHA1

0e048c2a27acf34154f978b4a91cba6174c549bf
SHA256

2d7bde3914d9e1baa7b88bd242c49e09206ab2976a198685b718105d10d0fc90
SHA512

32fd37e7a267b131fca5db73712f393a45f47a8a16c06353be62727054aa74a9d1787a6e277ddfe70d76147017b5283347a1c5560b62d04524ed631920471234
SSDEEP

384:+i5Bmhj2PmwERb6k/iAVX/dUY2ZpEGMOZ77o0UDqHZ:qh6un1iYWrTXo0UDqHZ

Score

1^/10

Malware Config

Signatures

Opens file in notepad (likely ransom note) 1 IoCs

ransomware

pid	Process
2192	NOTEPAD.EXE

Processes

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\resources\app.asar.unpacked\node_modules\@wickednesspro\bento4-latest\src\platforms\darwin-x64\docs\LICENSE.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:2192

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads