Overview

overview

3

Static

static

3

Fish-v327-...sh.exe

windows7-x64

3

Fish-v327-...sh.exe

windows10-2004-x64

3

Fish-v327-...8.html

windows7-x64

1

Fish-v327-...8.html

windows10-2004-x64

1

Fish-v327-...ge.dll

windows7-x64

1

Fish-v327-...ge.dll

windows10-2004-x64

1

Fish-v327-...ad.htm

windows7-x64

1

Fish-v327-...ad.htm

windows10-2004-x64

1

Fish-v327-...ni.htm

windows7-x64

1

Fish-v327-...ni.htm

windows10-2004-x64

1

Fish-v327-...op.htm

windows7-x64

1

Fish-v327-...op.htm

windows10-2004-x64

1

Fish-v327-...40.dll

windows7-x64

1

Fish-v327-...40.dll

windows10-2004-x64

1

Fish-v327-...42.dll

windows7-x64

1

Fish-v327-...42.dll

windows10-2004-x64

1

Fish-v327-...90.dll

windows7-x64

1

Fish-v327-...90.dll

windows10-2004-x64

1

Fish-v327-...90.dll

windows7-x64

1

Fish-v327-...90.dll

windows10-2004-x64

1

Fish-v327-...60.dll

windows7-x64

3

Fish-v327-...60.dll

windows10-2004-x64

3

Fish-v327-...90.dll

windows7-x64

1

Fish-v327-...90.dll

windows10-2004-x64

1

Fish-v327-...90.dll

windows7-x64

1

Fish-v327-...90.dll

windows10-2004-x64

1

Fish-v327-...rt.dll

windows7-x64

3

Fish-v327-...rt.dll

windows10-2004-x64

1

Fish-v327-...ib.dll

windows7-x64

1

Fish-v327-...ib.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    51s
  • max time network
    52s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12-06-2024 16:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Fish-v327-0221/Fish.exe

  • Size

    3.5MB

  • MD5

    b1473586f0b34e267f0a483598b411ae

  • SHA1

    26765d55f69589b047a7cecd8ecf884531c4e046

  • SHA256

    039b7a53462c5ae6f10239b084e94eb18eed31c82dcbfeea9c616a0de0836fba

  • SHA512

    7ddf835823666d2307f34b7f95bfb5168049392ae1fe7ceec088960d1382be8864dfad728ed91b1b3773bdef86e14341bcc8be08905f42cffd7a1eb6d3525dad

  • SSDEEP

    49152:zzsR1DavkiXpsQVFRR1TbZ1SNa6NRd5DD/DDD/DiTkK:01DavnZsQVFRkNTpD/DDD/D

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies Internet Explorer settings 1 TTPs 5 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Fish-v327-0221\Fish.exe
    "C:\Users\Admin\AppData\Local\Temp\Fish-v327-0221\Fish.exe"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1420

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Fish-v327-0221\kini\tkcfg.ini
    Filesize

    484B

    MD5

    d541adc556d29750c6e21f6f1e039d8d

    SHA1

    d1a89e895391cbd60c88396e63975be232e023e9

    SHA256

    a2e669ebed972d73724e2d396153a7153471b3717824dfc2987f4698ad13804d

    SHA512

    2651db7d2073afdbe465b7ed5ad2c282357afe4ce92401db2ea58c5556b487cf11ab507cc504a0c44b571c4010da66d236730db8d30c2f8c3f7f81d0a6f8a07f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Fish-v327-0221\kini\tkfin.ini
    Filesize

    1KB

    MD5

    d1e9a4d42cc8b4f9a3bcd99f3e4b58ab

    SHA1

    3c249d31895be28e9a70cb8248a82dff210d7648

    SHA256

    93bbce3e31b37d752fb3c2b826932dbe1771014d3031b3a0322837a6f7cc7d82

    SHA512

    20d6223662f74478d3959d2aaece574243c53db02fd1a4317f2e94ed204f9845147f270675ac2c70fd986948b9c248b418bca7efb6c9fa48318972e2ba03c3a8

    Download Submit