Overview

overview

4

Static

static

3

Graillon-F...de.pdf

windows10-1703-x64

1

Graillon-F...de.pdf

windows11-21h2-x64

1

Graillon-F...et.pdf

windows10-1703-x64

1

Graillon-F...et.pdf

windows11-21h2-x64

1

Graillon-F...on2.so

windows10-1703-x64

3

Graillon-F...on2.so

windows11-21h2-x64

3

Graillon-F...n 2.so

windows10-1703-x64

3

Graillon-F...n 2.so

windows11-21h2-x64

3

Graillon-F...n 2.so

windows10-1703-x64

3

Graillon-F...n 2.so

windows11-21h2-x64

3

Graillon-F....0.pkg

windows10-1703-x64

3

Graillon-F....0.pkg

windows11-21h2-x64

3

Graillon-F....0.exe

windows10-1703-x64

4

Graillon-F....0.exe

windows11-21h2-x64

4

$PLUGINSDI...em.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PROGRAMFI... 2.dll

windows10-1703-x64

1

$PROGRAMFI... 2.dll

windows11-21h2-x64

1

$PROGRAMFI... 2.dll

windows10-1703-x64

1

$PROGRAMFI... 2.dll

windows11-21h2-x64

1

$PROGRAMFI...64.dll

windows10-1703-x64

1

$PROGRAMFI...64.dll

windows11-21h2-x64

1

$_26_/Aubu...64.dll

windows10-1703-x64

1

$_26_/Aubu...64.dll

windows11-21h2-x64

1

$_27_/Aubu... 2.dll

windows10-1703-x64

3

$_27_/Aubu... 2.dll

windows11-21h2-x64

3

$_28_/Grai...64.dll

windows10-1703-x64

1

$_28_/Grai...64.dll

windows11-21h2-x64

1

Graillon-F...e.html

windows10-1703-x64

1

Graillon-F...e.html

windows11-21h2-x64

1

Resubmissions

07/07/2024, 20:29

240707-y91taaxgjk 4

07/07/2024, 20:21

240707-y48lyaxflq 4

20/04/2024, 11:56

240420-n355bagg7x 4

Analysis

  • max time kernel
    238s
  • max time network
    251s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240508-en
  • resource tags

    arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    07/07/2024, 20:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Graillon-FREE-2.8/Windows/Graillon-2-FREE-2.8.0.exe

  • Size

    9.4MB

  • MD5

    b15e6247e307fe3438f17aa05688ae5e

  • SHA1

    f68fe99bf6e6ed87b8d192406f01a3669e440cd2

  • SHA256

    b17c4d698a7ff93edbe0512bbf180c896e3ff96c6be8495d3b08dfa1d5c1cf8d

  • SHA512

    cdfe99a47ada756f5898dc91dda695926293b4ac5207d585d30d7572b17246443a9ddeba1f9d440e6e800cef535d8b9f6a4be21301f67c6f55cb0795ddf9032c

  • SSDEEP

    196608:1tJV+nIDBO8XnlxYmRtxtGnScMHRAErNWw+xOE1h5hOUOkqkDioCnck10:1taIDBO8XlxYmttdcMHRzOxDOUO1CXCI

Score
4/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Program Files directory 37 IoCs
  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\Graillon-FREE-2.8\Windows\Graillon-2-FREE-2.8.0.exe
    "C:\Users\Admin\AppData\Local\Temp\Graillon-FREE-2.8\Windows\Graillon-2-FREE-2.8.0.exe"
    1⤵
    • Drops file in Program Files directory
    • Loads dropped DLL
    PID:4372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsn7FD0.tmp\System.dll
    Filesize

    12KB

    MD5

    4add245d4ba34b04f213409bfe504c07

    SHA1

    ef756d6581d70e87d58cc4982e3f4d18e0ea5b09

    SHA256

    9111099efe9d5c9b391dc132b2faf0a3851a760d4106d5368e30ac744eb42706

    SHA512

    1bd260cabe5ea3cefbbc675162f30092ab157893510f45a1b571489e03ebb2903c55f64f89812754d3fe03c8f10012b8078d1261a7e73ac1f87c82f714bce03d

    Download Submit