Overview

overview

10

Static

static

10

_Getintopc...64.rar

windows11-21h2-x64

3

Password 123.txt

windows11-21h2-x64

3

Sausage.Fa...60.sfv

windows11-21h2-x64

3

Sausage.Fa...up.exe

windows11-21h2-x64

10

$PLUGINSDI...gm.ogg

windows11-21h2-x64

3

$PLUGINSDI...in.skf

windows11-21h2-x64

3

$PLUGINSDI...al.ini

windows11-21h2-x64

3

$PLUGINSDI...rd.bmp

windows11-21h2-x64

3

$PLUGINSDI...sh.bmp

windows11-21h2-x64

Resource/1.bmp

windows11-21h2-x64

3

Resource/10.bmp

windows11-21h2-x64

3

Resource/11.bmp

windows11-21h2-x64

3

Resource/12.bmp

windows11-21h2-x64

3

Resource/13.bmp

windows11-21h2-x64

3

Resource/14.bmp

windows11-21h2-x64

3

Resource/15.bmp

windows11-21h2-x64

3

Resource/16.bmp

windows11-21h2-x64

3

Resource/2.bmp

windows11-21h2-x64

3

Resource/3.bmp

windows11-21h2-x64

3

Resource/4.bmp

windows11-21h2-x64

3

Resource/5.bmp

windows11-21h2-x64

3

Resource/6.bmp

windows11-21h2-x64

3

Resource/7.bmp

windows11-21h2-x64

3

Resource/8.bmp

windows11-21h2-x64

3

Resource/9.bmp

windows11-21h2-x64

3

Resource/AboutBox.bmp

windows11-21h2-x64

3

Resource/B...nd.bmp

windows11-21h2-x64

3

Resource/S...32.dll

windows11-21h2-x64

3

Resource/S...64.dll

windows11-21h2-x64

1

Sausage Fa...64.dll

windows11-21h2-x64

1

Sausage Fattener.dll

windows11-21h2-x64

1

uninstall.exe

windows11-21h2-x64

7

Analysis

  • max time kernel
    127s
  • max time network
    204s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240709-en
  • resource tags

    arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    17-07-2024 10:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Resource/AboutBox.bmp

  • Size

    261KB

  • MD5

    8d54f93d237afeac0f9a1f38419ec778

  • SHA1

    d46781264b4d056fa2180ac4c8e514c192e6f813

  • SHA256

    9f41ccadf3e51aeacb40aca9bf0a37a8f81cb5240e5d9d35bbfd85857125f0af

  • SHA512

    a8c5fa1686bc508a417fda165c7dde3c09a9b1e12256be2b29d86f90373ac6221c3b05244687de0b6795555f508061db38f1bcfe7d96fca8b7c3dfd579b92f2d

  • SSDEEP

    1536:BQSNjG0phPqY54aUmMgNNjepTcr9H5GRyptiM7s:SSNsqNNjPGRn

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Resource\AboutBox.bmp
    1⤵
    • Modifies registry class
    PID:1980
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads