Analysis

  • max time kernel
    134s
  • max time network
    135s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    19-06-2024 00:32

General

  • Target

    base.lua

  • Size

    2KB

  • MD5

    15774c9d58d8e00297bc5d90e97036af

  • SHA1

    1ef8137a90fff75e7b28d2a04b7cbaa975231477

  • SHA256

    6438c4641fd0f17d0fb922d5849f1e1b6116c30210c1c944c5567242b6b7ba02

  • SHA512

    9a0051560af0a6918e441259f88d770a7567f3b153ae58ddea28b7df0e431c4f4314abbf1a4ba01db9f67aa3aaaa6e0300d6fc1178dc48c352cff47db4134bb3

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\base.lua
    1⤵
    • Modifies registry class
    PID:2912
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4700

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads