Overview

overview

7

Static

static

3

d01c9c808e...90.exe

windows7-x64

7

d01c9c808e...90.exe

windows10-2004-x64

7

$PLUGINSDIR/INetC.dll

windows7-x64

3

$PLUGINSDIR/INetC.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

CPUEater.exe

windows7-x64

1

CPUEater.exe

windows10-2004-x64

1

Insights.exe

windows7-x64

1

Insights.exe

windows10-2004-x64

1

InstallHelper.exe

windows7-x64

1

InstallHelper.exe

windows10-2004-x64

1

LogViewer.exe

windows7-x64

1

LogViewer.exe

windows10-2004-x64

1

ProcessGovernor.exe

windows7-x64

1

ProcessGovernor.exe

windows10-2004-x64

1

ProcessLasso.exe

windows7-x64

1

ProcessLasso.exe

windows10-2004-x64

1

ProcessLas...er.exe

windows7-x64

3

ProcessLas...er.exe

windows10-2004-x64

5

QuickUpgrade.exe

windows7-x64

6

QuickUpgrade.exe

windows10-2004-x64

6

ThreadRacer.exe

windows7-x64

1

ThreadRacer.exe

windows10-2004-x64

1

TweakScheduler.exe

windows7-x64

1

TweakScheduler.exe

windows10-2004-x64

1

bitsumsess...nt.exe

windows7-x64

1

bitsumsess...nt.exe

windows10-2004-x64

1

pl-update.cmd

windows7-x64

1

pl-update.cmd

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-07-2024 10:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d01c9c808e5c30ff410020ea0cdb1e2a492d522f2977721d52d5597232743090.exe

  • Size

    2.3MB

  • MD5

    f91bab0685d15f4830a448784b070c7c

  • SHA1

    a6c31d4aaffb69afd0474a602eef0af115386023

  • SHA256

    d01c9c808e5c30ff410020ea0cdb1e2a492d522f2977721d52d5597232743090

  • SHA512

    affeb551ec6fc7b9db5f74a936feb525c1a8976fc38e2bf02a61ec0d0cb2e798a86e682b72abcfca0f9d7f1fe22cb54738a7292dc91b36a18e7c1939454fd9fd

  • SSDEEP

    49152:367XU2n/sAztmgxIlA0+HQ4v/lU608tXqQynQ+ADIozSqXyGXf:3gU2n/sAdQA06Q4Hl+89qQynQoouAx

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\d01c9c808e5c30ff410020ea0cdb1e2a492d522f2977721d52d5597232743090.exe
    "C:\Users\Admin\AppData\Local\Temp\d01c9c808e5c30ff410020ea0cdb1e2a492d522f2977721d52d5597232743090.exe"
    1⤵
    • Loads dropped DLL
    PID:1436

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsf9433.tmp\LangDLL.dll
    Filesize

    5KB

    MD5

    68b287f4067ba013e34a1339afdb1ea8

    SHA1

    45ad585b3cc8e5a6af7b68f5d8269c97992130b3

    SHA256

    18e8b40ba22c7a1687bd16e8d585380bc2773fff5002d7d67e9485fcc0c51026

    SHA512

    06c38bbb07fb55256f3cdc24e77b3c8f3214f25bfd140b521a39d167113bf307a7e8d24e445d510bc5e4e41d33c9173bb14e3f2a38bc29a0e3d08c1f0dca4bdb

    Download Submit