Overview

overview

3

Static

static

3

Pixel Worlds (1).rar

windows7-x64

3

Pixel Worlds (1).rar

windows10-2004-x64

3

PixelWorld...tor.js

windows7-x64

3

PixelWorld...tor.js

windows10-2004-x64

3

PixelWorld...tor.js

windows7-x64

3

PixelWorld...tor.js

windows10-2004-x64

3

UnityCrash...64.exe

windows7-x64

1

UnityCrash...64.exe

windows10-2004-x64

1

UnityPlayer.dll

windows7-x64

1

UnityPlayer.dll

windows10-2004-x64

1

baselib.dll

windows7-x64

1

baselib.dll

windows10-2004-x64

1

dotnet/Mic...es.dll

windows7-x64

1

dotnet/Mic...es.dll

windows10-2004-x64

1

dotnet/Mic...rp.dll

windows7-x64

1

dotnet/Mic...rp.dll

windows10-2004-x64

1

dotnet/Mic...64.dll

windows7-x64

1

dotnet/Mic...64.dll

windows10-2004-x64

1

dotnet/Mic...ns.dll

windows7-x64

1

dotnet/Mic...ns.dll

windows10-2004-x64

1

dotnet/Mic...on.dll

windows7-x64

1

dotnet/Mic...on.dll

windows10-2004-x64

1

dotnet/Mic...ns.dll

windows7-x64

1

dotnet/Mic...ns.dll

windows10-2004-x64

1

dotnet/Mic...ng.dll

windows7-x64

1

dotnet/Mic...ng.dll

windows10-2004-x64

1

dotnet/Mic...ns.dll

windows7-x64

1

dotnet/Mic...ns.dll

windows10-2004-x64

1

dotnet/Mic...es.dll

windows7-x64

1

dotnet/Mic...es.dll

windows10-2004-x64

1

dotnet/Mic...re.dll

windows7-x64

1

dotnet/Mic...re.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    99s
  • max time network
    92s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    11-07-2024 16:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Pixel Worlds (1).rar

  • Size

    127.4MB

  • MD5

    5a70986be06c87cd82942328400c93cc

  • SHA1

    39a6060d46d5441ffcdd8f6892490fdcdb6d0595

  • SHA256

    58e4e05551a8e06da396e985afc28dbb77eebcb6f744d764145ba78713ef5e77

  • SHA512

    f2b62c033b812c3b949297b33d3fa733ad3723dd268d12981991fa6dbdf950b3d48082d1953adeff7bc2c747ab78a1b98df9ad0c067beafb0ffba838a851fed5

  • SSDEEP

    3145728:CzzQnW1AQ+zyNxzYQe2x7N6lMnlJjNg2LV3l3/:CfQ3A5Nvnlp5V9

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 2 IoCs
  • Suspicious use of FindShellTrayWindow 17 IoCs
  • Suspicious use of SendNotifyMessage 16 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs
  • Suspicious use of WriteProcessMemory 9 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Pixel Worlds (1).rar"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3060
    • C:\Windows\system32\rundll32.exe
      "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\Admin\AppData\Local\Temp\Pixel Worlds (1).rar
      2⤵
      • Modifies registry class
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of WriteProcessMemory
      PID:2392
      • C:\Windows\system32\rundll32.exe
        "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\Admin\AppData\Local\Temp\Pixel Worlds (1).rar
        3⤵
        • Modifies registry class
        • Suspicious use of WriteProcessMemory
        PID:2968
        • C:\Program Files\VideoLAN\VLC\vlc.exe
          "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Pixel Worlds (1).rar"
          4⤵
          • Suspicious behavior: AddClipboardFormatListener
          • Suspicious behavior: GetForegroundWindowSpam
          • Suspicious use of FindShellTrayWindow
          • Suspicious use of SendNotifyMessage
          • Suspicious use of SetWindowsHookEx
          PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2608-38-0x000007FEFABF0000-0x000007FEFAC24000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2608-37-0x000000013F600000-0x000000013F6F8000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2608-41-0x000007FEF61C0000-0x000007FEF61D7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2608-42-0x000007FEF61A0000-0x000007FEF61B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-44-0x000007FEF6160000-0x000007FEF6171000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-46-0x000007FEF5770000-0x000007FEF5781000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-45-0x000007FEF6140000-0x000007FEF615D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2608-43-0x000007FEF6180000-0x000007FEF6197000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2608-40-0x000007FEF70F0000-0x000007FEF7108000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2608-39-0x000007FEF5790000-0x000007FEF5A46000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2608-48-0x000007FEF4370000-0x000007FEF457B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2608-49-0x000007FEFAB60000-0x000007FEFABA1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/2608-47-0x000007FEF4580000-0x000007FEF5630000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2608-53-0x000007FEF4280000-0x000007FEF4291000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-52-0x000007FEFAAF0000-0x000007FEFAB01000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-51-0x000007FEFAB10000-0x000007FEFAB28000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2608-50-0x000007FEFAB30000-0x000007FEFAB51000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2608-54-0x000007FEF4260000-0x000007FEF4271000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-55-0x000007FEF41B0000-0x000007FEF41CB000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2608-56-0x000007FEF4190000-0x000007FEF41A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-57-0x000007FEF4240000-0x000007FEF4258000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2608-58-0x000007FEF4210000-0x000007FEF4240000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2608-60-0x000007FEF40A0000-0x000007FEF411C000-memory.dmp

    Filesize

    496KB

    Download

  • memory/2608-61-0x000007FEF41F0000-0x000007FEF4201000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-59-0x000007FEF4120000-0x000007FEF4187000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2608-62-0x000007FEF4040000-0x000007FEF4097000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2608-63-0x000007FEF4010000-0x000007FEF4038000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2608-64-0x000007FEF3FE0000-0x000007FEF4004000-memory.dmp

    Filesize

    144KB

    Download

  • memory/2608-65-0x000007FEF41D0000-0x000007FEF41E8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2608-66-0x000007FEF3FB0000-0x000007FEF3FD3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2608-67-0x000007FEF3F90000-0x000007FEF3FA1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-68-0x000007FEF3F70000-0x000007FEF3F82000-memory.dmp

    Filesize

    72KB

    Download

  • memory/2608-69-0x000007FEF3F40000-0x000007FEF3F61000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2608-70-0x000007FEF3F20000-0x000007FEF3F33000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2608-71-0x000007FEF3190000-0x000007FEF31B1000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2608-72-0x000007FEF3170000-0x000007FEF3181000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-73-0x000007FEF3150000-0x000007FEF3167000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2608-74-0x000007FEFAAE0000-0x000007FEFAAF0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2608-75-0x000007FEF3120000-0x000007FEF314F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/2608-76-0x000007FEF3100000-0x000007FEF3111000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2608-77-0x000007FEF30E0000-0x000007FEF30F6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2608-78-0x000007FEF3010000-0x000007FEF30D5000-memory.dmp

    Filesize

    788KB

    Download

  • memory/2608-80-0x000007FEF2F50000-0x000007FEF2FB2000-memory.dmp

    Filesize

    392KB

    Download

  • memory/2608-81-0x000007FEF2EE0000-0x000007FEF2F4D000-memory.dmp

    Filesize

    436KB

    Download

  • memory/2608-79-0x000007FEF2FC0000-0x000007FEF3002000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2608-82-0x000007FEF2D60000-0x000007FEF2EE0000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2608-85-0x000007FEF5790000-0x000007FEF5A46000-memory.dmp

    Filesize

    2.7MB

    Download