2f79a30540e3f31d86819c9fbf4d4f3a91d5d83ae07bcda94b1388818aebc933

Submit
Reports

Overview

overview

Static

static

Heaven's Exploits.zip

windows10-1703-x64

Heaven's Exploits.zip

windows11-21h2-x64

Heaven's E...er.exe

windows10-1703-x64

Heaven's E...er.exe

windows11-21h2-x64

Heaven's E...O.json

windows10-1703-x64

Heaven's E...O.json

windows11-21h2-x64

Heaven's E...ANO.iy

windows10-1703-x64

Heaven's E...ANO.iy

windows11-21h2-x64

Heaven's E..._FE.iy

windows10-1703-x64

Heaven's E..._FE.iy

windows11-21h2-x64

Heaven's E...g.json

windows10-1703-x64

Heaven's E...g.json

windows11-21h2-x64

Heaven's E...ed.txt

windows10-1703-x64

Heaven's E...ed.txt

windows11-21h2-x64

Heaven's E...ary.js

windows10-1703-x64

Heaven's E...ary.js

windows11-21h2-x64

Heaven's E...ipt.js

windows10-1703-x64

Heaven's E...ipt.js

windows11-21h2-x64

Heaven's E...on.txt

windows10-1703-x64

Heaven's E...on.txt

windows11-21h2-x64

Heaven's E...sh.txt

windows10-1703-x64

Heaven's E...sh.txt

windows11-21h2-x64

Heaven's E...op.ini

windows10-1703-x64

Heaven's E...op.ini

windows11-21h2-x64

Analysis

max time kernel
436s
max time network
1159s
platform
windows11-21h2_x64
resource
win11-20240704-en
resource tags

arch:x64arch:x86image:win11-20240704-enlocale:en-usos:windows11-21h2-x64system
submitted
05-07-2024 08:54

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Heaven's Exploits.zip

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral2

Sample

Heaven's Exploits.zip

Resource

win11-20240704-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral3

Sample

Heaven's Exploits/Solara/SolaraBootstrapper.exe

Resource

win10-20240404-en

windows10-1703-x64

31 signatures

1800 seconds

Behavioral task

behavioral4

Sample

Heaven's Exploits/Solara/SolaraBootstrapper.exe

Resource

win11-20240704-en

discovery evasion themida trojan

windows11-21h2-x64

25 signatures

1800 seconds

Behavioral task

behavioral5

Sample

Heaven's Exploits/Solara/workspace/CFA HUB/Battlegrounder_2_GPO.json

Resource

win10-20240611-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral6

Sample

Heaven's Exploits/Solara/workspace/CFA HUB/Battlegrounder_2_GPO.json

Resource

win11-20240508-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral7

Sample

Heaven's Exploits/Solara/workspace/IY_ANO.iy

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral8

Sample

Heaven's Exploits/Solara/workspace/IY_ANO.iy

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral9

Sample

Heaven's Exploits/Solara/workspace/IY_FE.iy

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral10

Sample

Heaven's Exploits/Solara/workspace/IY_FE.iy

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral11

Sample

Heaven's Exploits/Solara/workspace/KavoConfig.json

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral12

Sample

Heaven's Exploits/Solara/workspace/KavoConfig.json

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral13

Sample

Heaven's Exploits/Solara/workspace/vape/CustomModules/cachechecked.txt

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

Heaven's Exploits/Solara/workspace/vape/CustomModules/cachechecked.txt

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral15

Sample

Heaven's Exploits/Solara/workspace/vape/GuiLibrary.js

Resource

win10-20240404-en

execution

windows10-1703-x64

1 signatures

1800 seconds

Behavioral task

behavioral16

Sample

Heaven's Exploits/Solara/workspace/vape/GuiLibrary.js

Resource

win11-20240704-en

execution

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral17

Sample

Heaven's Exploits/Solara/workspace/vape/MainScript.js

Resource

win10-20240404-en

execution

windows10-1703-x64

1 signatures

1800 seconds

Behavioral task

behavioral18

Sample

Heaven's Exploits/Solara/workspace/vape/MainScript.js

Resource

win11-20240704-en

execution

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral19

Sample

Heaven's Exploits/Solara/workspace/vape/assetsversion.txt

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

Heaven's Exploits/Solara/workspace/vape/assetsversion.txt

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral21

Sample

Heaven's Exploits/Solara/workspace/vape/commithash.txt

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

Heaven's Exploits/Solara/workspace/vape/commithash.txt

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral23

Sample

Heaven's Exploits/desktop.ini

Resource

win10-20240611-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

Heaven's Exploits/desktop.ini

Resource

win11-20240704-en

windows11-21h2-x64

3 signatures

1800 seconds

Report Analysis Logs

General

Target

Heaven's Exploits.zip
Size

336KB
MD5

5048bb4d5026d1039654a97c8378edf2
SHA1

48d7de93c5fba06572515a109dc04f335310136f
SHA256

2f79a30540e3f31d86819c9fbf4d4f3a91d5d83ae07bcda94b1388818aebc933
SHA512

cf4df4da62e9107b19fd0d4a88ede0fab8e14b474aba159a9e133859b8b34751e13bbfa6cd58eac6c2bf73f24b16e20eb12b2384c5a2e029a2a4611115337b9e
SSDEEP

6144:lBzZhyoFThwHDh2GfPZHx3X8STKeAX0kMxb/ENHPNbmLq5hauTW3gIBcT1Z3UR:lBzZMoFThMhx9MSTK+bsNvN2KsxmLER

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,"C:\Users\Admin\AppData\Local\Temp\Heaven's Exploits.zip"
1⤵
PID:1636

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads