Overview

overview

10

Static

static

10

Awesom-O/A...er.exe

windows7-x64

7

Awesom-O/A...er.exe

windows10-2004-x64

7

Awesom-O/A...er.exe

windows7-x64

7

Awesom-O/A...er.exe

windows10-2004-x64

7

Awesom-O/A...or.exe

windows7-x64

7

Awesom-O/A...or.exe

windows10-2004-x64

7

Awesom-O/A...er.exe

windows7-x64

7

Awesom-O/A...er.exe

windows10-2004-x64

7

Awesom-O/A...om.exe

windows7-x64

7

Awesom-O/A...om.exe

windows10-2004-x64

7

Awesom-O/Awesom-O.dll

windows7-x64

3

Awesom-O/Awesom-O.dll

windows10-2004-x64

3

Awesom-O/Awesom-O.exe

windows7-x64

3

Awesom-O/Awesom-O.exe

windows10-2004-x64

3

Awesom-O/c...ll.vbs

windows7-x64

1

Awesom-O/c...ll.vbs

windows10-2004-x64

1

Awesom-O/c....1.pdf

windows7-x64

3

Awesom-O/c....1.pdf

windows10-2004-x64

3

Awesom-O/c...cs.pdf

windows7-x64

3

Awesom-O/c...cs.pdf

windows10-2004-x64

3

Awesom-O/c...ll.vbs

windows7-x64

1

Awesom-O/c...ll.vbs

windows10-2004-x64

1

Awesom-O/c...le.vbs

windows7-x64

1

Awesom-O/c...le.vbs

windows10-2004-x64

1

Awesom-O/c...ies.js

windows7-x64

3

Awesom-O/c...ies.js

windows10-2004-x64

3

Awesom-O/c...es.vbs

windows7-x64

1

Awesom-O/c...es.vbs

windows10-2004-x64

1

Awesom-O/c...ets.js

windows7-x64

3

Awesom-O/c...ets.js

windows10-2004-x64

3

Awesom-O/c...ons.js

windows7-x64

3

Awesom-O/c...ons.js

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-07-2024 06:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Awesom-O/Awesom-O.dll

  • Size

    120KB

  • MD5

    07564fcaa07fa5e22e0219a4eb2bf18c

  • SHA1

    e4338a885a6c73597d430da5c7f423c809361db1

  • SHA256

    d94e4dbaaf1610b8200297676b560cbb66022dbfa76c31f2fb0698af285d4d60

  • SHA512

    51cb73e4af59d26ce4f50b12792b2e31f5d8690f4cdddd6b2de347fdd5a5aed349ea2cf225e180a4f48abbfec7c76514b6074aed7ec26ec8fc2cc2c5f1822cc5

  • SSDEEP

    1536:1IXtK2yqvRQQqD3o/wBTvTdeKkMkpY5uvofzA2rRJ8ZH8tyzc2/:1Is2y82Y4mpSF2x8tyz1

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\Awesom-O\Awesom-O.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1216
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\Awesom-O\Awesom-O.dll,#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:3848

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads