Overview

overview

7

Static

static

3

VideoPlayT...up.exe

windows7-x64

7

VideoPlayT...up.exe

windows10-2004-x64

7

Bin/mksquashfs.exe

windows7-x64

1

Bin/mksquashfs.exe

windows10-2004-x64

3

Bin/style.ss

windows7-x64

3

Bin/style.ss

windows10-2004-x64

3

Bin/transl..._ar.qm

windows7-x64

3

Bin/transl..._ar.qm

windows10-2004-x64

3

Bin/transl..._bg.qm

windows7-x64

3

Bin/transl..._bg.qm

windows10-2004-x64

3

Bin/transl..._ca.qm

windows7-x64

3

Bin/transl..._ca.qm

windows10-2004-x64

3

Bin/transl..._cs.qm

windows7-x64

3

Bin/transl..._cs.qm

windows10-2004-x64

3

Bin/transl..._da.qm

windows7-x64

3

Bin/transl..._da.qm

windows10-2004-x64

3

Bin/transl..._de.qm

windows7-x64

3

Bin/transl..._de.qm

windows10-2004-x64

3

Bin/transl..._en.qm

windows7-x64

3

Bin/transl..._en.qm

windows10-2004-x64

3

Bin/transl..._es.qm

windows7-x64

3

Bin/transl..._es.qm

windows10-2004-x64

3

Bin/transl..._fi.qm

windows7-x64

3

Bin/transl..._fi.qm

windows10-2004-x64

3

Bin/transl..._fr.qm

windows7-x64

3

Bin/transl..._fr.qm

windows10-2004-x64

3

Bin/transl..._gd.qm

windows7-x64

3

Bin/transl..._gd.qm

windows10-2004-x64

3

Bin/transl..._he.qm

windows7-x64

3

Bin/transl..._he.qm

windows10-2004-x64

3

Bin/transl..._hu.qm

windows7-x64

3

Bin/transl..._hu.qm

windows10-2004-x64

3

Analysis

  • max time kernel
    1353s
  • max time network
    1144s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/07/2024, 09:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bin/translations/qt_de.qm

  • Size

    215KB

  • MD5

    40760a3456c9c8abe6ea90336af5da01

  • SHA1

    b249aa1cbf8c2636ce57eb4932d53492e4ce36ac

  • SHA256

    553c046835db9adef15954fa9a576625366ba8bfd16637038c4bcd28e5ebace1

  • SHA512

    068e55f39b5250cc937e4b2bd627873132d201d351b9351be703cd9b95d3bafb4bd649cb4df120a976d7c156da679758d952cac5e0523107244e517d323bc0c5

  • SSDEEP

    3072:7w8go8+ph6JVB8XVXYWpSNEeg8+vaD+p4N8DDiEKugwGZulh15ce4M+4NsPYXCZW:88h8Sj286tTiDD

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Bin\translations\qt_de.qm
    1⤵
    • Modifies registry class
    PID:556
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:2876

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads