Overview

overview

3

Static

static

3

Windows-Ac...tn.ps1

windows7-x64

3

Windows-Ac...tn.ps1

windows10-2004-x64

3

Windows-Ac...sn.ps1

windows7-x64

3

Windows-Ac...sn.ps1

windows10-2004-x64

3

Windows-Ac...te.exe

windows10-2004-x64

1

Windows-Ac...lc.dll

windows7-x64

1

Windows-Ac...lc.dll

windows10-2004-x64

1

Windows-Ac...te.exe

windows10-2004-x64

1

Windows-Ac...lc.dll

windows7-x64

1

Windows-Ac...lc.dll

windows10-2004-x64

1

Windows-Ac...or.bat

windows7-x64

1

Windows-Ac...or.bat

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/07/2024, 23:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Windows-Activator-main/BIN/x86/gatherosstate.exe

  • Size

    1.3MB

  • MD5

    b13bc5b62f54607c334a6464d9b85cc8

  • SHA1

    12721c69acbcb515f7adbee08ec42fc61192c187

  • SHA256

    51791625054b01802fd5aaa6c4a929827b369dfef7b2891b5f55e0fa61af0c7d

  • SHA512

    58a9c4e413992b8c225fd622934929382070cbe8c8999bdb93851a1f46a0129d674135eacce2b3f96a19dfbb7333e3b921b5e39b727339c9897de7a02d2ce3bf

  • SSDEEP

    24576:d66aa+++b+xBxAtO/z08BAZffwEhVpK05wDn7kJQ8FKMEx9+a8S8bB:d66aa+++b+xBxAtO7/eZffw8VpeDn7kD

Score
1/10

Malware Config

Signatures

  • Checks SCSI registry key(s) 3 TTPs 5 IoCs

    SCSI information is often read in order to detect sandboxing environments.

Processes

  • C:\Users\Admin\AppData\Local\Temp\Windows-Activator-main\BIN\x86\gatherosstate.exe
    "C:\Users\Admin\AppData\Local\Temp\Windows-Activator-main\BIN\x86\gatherosstate.exe"
    1⤵
    • Checks SCSI registry key(s)
    PID:768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/768-0-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/768-1-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/768-2-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/768-3-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/768-4-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/768-7-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/768-6-0x0000000063780000-0x0000000063798000-memory.dmp

    Filesize

    96KB

    Download

  • memory/768-5-0x00000000009E0000-0x00000000009F0000-memory.dmp

    Filesize

    64KB

    Download