Overview

overview

3

Static

static

3

Plants-VS-...om.rar

windows11-21h2-x64

3

Resubmissions

17-06-2024 01:11

240617-bjx85s1fnr 7

17-06-2024 01:06

240617-bf23xsxard 3

Analysis

  • max time kernel
    145s
  • max time network
    150s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240611-en
  • resource tags

    arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    17-06-2024 01:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Plants-VS-Zombies-Game-Of-The-Year-Edition-Steamrip-com.rar

  • Size

    75.7MB

  • MD5

    cc7306208a5a2af54aee36fccb1297fe

  • SHA1

    f5e4296f909c60403d32e4d5652cedb51406fe3b

  • SHA256

    541d0a7d8ba42e1abee5ba2fb9e79876468f014bdf082e77047cd288eb28ccc6

  • SHA512

    7bce0195be710ff9d0f54890126bfd6958b9dbbe2548175112bde86803b7e129797ebfc00120811d6a37ddcc36f43f04f70e02c3dc071daaab7fa3952285c000

  • SSDEEP

    1572864:+k2El0vhua3Qx/MdFiXgpMs1kTfx0qU/nn3tBUKKjGQts+apoqspWi7HrJ:qp3QxEPiXgpMJTfxc/nn45iQt5H2SHrJ

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Plants-VS-Zombies-Game-Of-The-Year-Edition-Steamrip-com.rar
    1⤵
    • Modifies registry class
    PID:4376
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4160

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads