Overview

overview

7

Static

static

3

geode-inst...in.exe

windows7-x64

7

geode-inst...in.exe

windows10-2004-x64

7

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

Geode.pdb

windows7-x64

3

Geode.pdb

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...et.xml

windows7-x64

1

geode/reso...et.xml

windows10-2004-x64

1

geode/reso...et.png

windows7-x64

3

geode/reso...et.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...et.xml

windows7-x64

1

geode/reso...et.xml

windows10-2004-x64

1

geode/reso...et.png

windows7-x64

3

geode/reso...et.png

windows10-2004-x64

3

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

Analysis

  • max time kernel
    90s
  • max time network
    93s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/07/2024, 21:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    geode/resources/geode.loader/BlankSheet-hd.xml

  • Size

    26KB

  • MD5

    98744000b370db49bce0cf184f4aa292

  • SHA1

    ea1429abce9e4a307f298a7ea396493c1889d581

  • SHA256

    3d2e1635a624d9dd31cb8e35d1ee4c8b377d5a199303667073faecdb349255a7

  • SHA512

    8b2f09b848c82409d0f452f20e6f745028152163acd9a4d5d1a18ba0763183d95d1da29272b7bcdf36e2b5aee48ae1819ab3c3fc4015c5e553d8d24b433e5c42

  • SSDEEP

    96:CybcMPcM1zcM3BVRh1bzFkZII8tbzlMGSm31bzSu9B6eaRbz0wznQuzGuzBuz2bo:XB9f7595tFM5dXQaWHzLlJt7vDJJjwo

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\geode\resources\geode.loader\BlankSheet-hd.xml"
    1⤵
      PID:4524

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4524-0-0x00007FF8CC050000-0x00007FF8CC060000-memory.dmp

      Filesize

      64KB

      Download

    • memory/4524-2-0x00007FF90BFD0000-0x00007FF90C1C5000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/4524-1-0x00007FF90C06D000-0x00007FF90C06E000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4524-3-0x00007FF90BFD0000-0x00007FF90C1C5000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/4524-4-0x00007FF90BFD0000-0x00007FF90C1C5000-memory.dmp

      Filesize

      2.0MB

      Download