Overview

overview

7

Static

static

3

VideoPlayT...up.exe

windows7-x64

7

VideoPlayT...up.exe

windows10-2004-x64

7

Bin/mksquashfs.exe

windows7-x64

1

Bin/mksquashfs.exe

windows10-2004-x64

3

Bin/style.ss

windows7-x64

3

Bin/style.ss

windows10-2004-x64

3

Bin/transl..._ar.qm

windows7-x64

3

Bin/transl..._ar.qm

windows10-2004-x64

3

Bin/transl..._bg.qm

windows7-x64

3

Bin/transl..._bg.qm

windows10-2004-x64

3

Bin/transl..._ca.qm

windows7-x64

3

Bin/transl..._ca.qm

windows10-2004-x64

3

Bin/transl..._cs.qm

windows7-x64

3

Bin/transl..._cs.qm

windows10-2004-x64

3

Bin/transl..._da.qm

windows7-x64

3

Bin/transl..._da.qm

windows10-2004-x64

3

Bin/transl..._de.qm

windows7-x64

3

Bin/transl..._de.qm

windows10-2004-x64

3

Bin/transl..._en.qm

windows7-x64

3

Bin/transl..._en.qm

windows10-2004-x64

3

Bin/transl..._es.qm

windows7-x64

3

Bin/transl..._es.qm

windows10-2004-x64

3

Bin/transl..._fi.qm

windows7-x64

3

Bin/transl..._fi.qm

windows10-2004-x64

3

Bin/transl..._fr.qm

windows7-x64

3

Bin/transl..._fr.qm

windows10-2004-x64

3

Bin/transl..._gd.qm

windows7-x64

3

Bin/transl..._gd.qm

windows10-2004-x64

3

Bin/transl..._he.qm

windows7-x64

3

Bin/transl..._he.qm

windows10-2004-x64

3

Bin/transl..._hu.qm

windows7-x64

3

Bin/transl..._hu.qm

windows10-2004-x64

3

Analysis

  • max time kernel
    1347s
  • max time network
    1133s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/07/2024, 09:47

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Bin/translations/qt_en.qm

  • Size

    33B

  • MD5

    aaea7ba475c961f941d0a23488457beb

  • SHA1

    2bf0054002c8f7d85dd080df332553bf9b3a8e26

  • SHA256

    494ac9a2b2cb2fdeced353f4a9f898ed8dcf616e9bc667438c62681e3f7f79cf

  • SHA512

    5b408c36c8f93f71e73e3d3b1c0c2ad699e92a6088604b8adf8e588e8a75fc3fc92828199b7f00f5b05b224ae819220d07e56d610a76a267594870bec77172be

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Bin\translations\qt_en.qm
    1⤵
    • Modifies registry class
    PID:1372
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:3816

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads