Analysis
-
max time kernel
88s -
max time network
204s -
platform
windows11-21h2_x64 -
resource
win11-20240709-en -
resource tags
arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system -
submitted
23-07-2024 10:33
Behavioral task
behavioral1
Sample
maple.rar
Resource
win11-20240709-en
Behavioral task
behavioral2
Sample
maple/Maple.exe
Resource
win11-20240709-en
Behavioral task
behavioral3
Sample
main.pyc
Resource
win11-20240709-en
Behavioral task
behavioral4
Sample
maple/assets/avatars/image.png
Resource
win11-20240709-en
Behavioral task
behavioral5
Sample
maple/assets/config.json
Resource
win11-20240709-en
Behavioral task
behavioral6
Sample
maple/crack.dll
Resource
win11-20240709-en
Behavioral task
behavioral7
Sample
maple/loader.exe
Resource
win11-20240709-en
General
-
Target
maple/assets/config.json
-
Size
149B
-
MD5
ee9db446b33f463ca8f558873c6fff7e
-
SHA1
d40efe04626a430d9c9c1b8db90dbd1110d8e2f8
-
SHA256
09962830609b0d1d5b286ad3e178245cfc152caa278d660b5b0a3dc21559547e
-
SHA512
7babaeb3edf9a7fcb9da804c5c1c53ce8abfeb91f83774a60bd538ca3c0bb4afb29f0afeb4ebb00bb51575a8c8d7011900367b92643925a1e585f2e73fba86d8
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Modifies registry class 2 IoCs
description ioc Process Key created \REGISTRY\USER\S-1-5-21-95457810-830748662-4054918673-1000_Classes\Local Settings cmd.exe Key created \REGISTRY\USER\S-1-5-21-95457810-830748662-4054918673-1000_Classes\Local Settings OpenWith.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 2548 OpenWith.exe