Overview

overview

7

Static

static

3

Setup.exe

windows7-x64

7

Setup.exe

windows10-2004-x64

7

非常世�...��.url

windows7-x64

1

非常世�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    102s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/07/2024, 11:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Setup.exe

  • Size

    1.1MB

  • MD5

    d4d4b5b204d8946575ee61c0f64253a2

  • SHA1

    51996ac164c82358832b760faae47a4c838a57cb

  • SHA256

    80edb8c3a3a93650573a4e3740d9f387477d2a80f2127bfdd34840302fbad260

  • SHA512

    97bd9db61b59ab0636da30646d9ba837cb0bcc5f764659c17e773aa5540aad4a7e98efb01daa19fcead123b5a05fee49593a5aac0c67d3777720acb909397248

  • SSDEEP

    24576:NlutM/GVY7lkcmLjLeN+526d4HGMA3nlk2Og0W0HUFJdEuX:NlKFWk1HeN162fA3naPW0HUbf

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\Setup.exe
    "C:\Users\Admin\AppData\Local\Temp\Setup.exe"
    1⤵
    • Loads dropped DLL
    PID:3344

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsdCE2F.tmp\InstallOptions.dll
    Filesize

    13KB

    MD5

    f372f97c34d69e6c9599d7103060f4c1

    SHA1

    ea742e6c73d134f64ef4f15067f81c63d6edef3f

    SHA256

    8c1c0ebe2df86cfbb59d787fa30c1d6db825b1162df0cafdb3df6119f337942a

    SHA512

    65b0539c5f59c9bdae4616c7e51d089090f31469edcc295f819c09aa989bc1dd9cd37ec71eda262545e5843ad94836edb58b50a8c8394905720eda8e0371a55c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\nsdCE2F.tmp\brandingurl.dll
    Filesize

    3KB

    MD5

    9c3488b5e9655d1837c3963ecec33f70

    SHA1

    f0fa9b4c29e75c6e4419c4633d09f2797aee2ef3

    SHA256

    05ef4beb7fab9d04c1fb251874166fa2d73a34b4a7f2b145d37a2fd00c88979a

    SHA512

    6af9f88d65d2279a71620f2a656062b1737b3a9a1692ed4e5887bdee891ce08d21c5c0b25ab3acbe6da9fe255dcd7f8a517c2751e73dc56add216740c945e4a7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\nsdCE2F.tmp\ioSpecial.ini
    Filesize

    596B

    MD5

    d2e28d462fa686c3ecc708e7feece4c7

    SHA1

    9347f6a54f1bfcd618ac455442dc1e427228e66b

    SHA256

    f432a771b80464c9317aacae0c92cf76911fa446cd911cd8037b047365c8c4ea

    SHA512

    bfdf1dbc50eb58f3f22ed066bbcea9c1dbeefa811f83d1e1aa91924b6d1e7622b9c3cc7eb0637ba7ecd0531207e73f4c6b217fef277f5be96f766ec43a88102d

    Download Submit