Overview

overview

10

Static

static

10

NucleusApp.zip

windows10-1703-x64

1

EasyHook.dll

windows10-1703-x64

1

EasyHook32.dll

windows10-1703-x64

3

EasyHook32Svc.exe

windows10-1703-x64

3

EasyHook64.dll

windows10-1703-x64

1

EasyHook64Svc.exe

windows10-1703-x64

1

EasyHookSvc.exe

windows10-1703-x64

3

Ionic.Zip.Reduced.dll

windows10-1703-x64

1

Jint.dll

windows10-1703-x64

1

NAudio.dll

windows10-1703-x64

1

Newtonsoft.Json.dll

windows10-1703-x64

1

Nucleus.Gaming.dll

windows10-1703-x64

1

Nucleus.Hook32.dll

windows10-1703-x64

3

Nucleus.Hook64.dll

windows10-1703-x64

1

Nucleus.IJx64.exe

windows10-1703-x64

1

Settings.ini

windows10-1703-x64

1

gui/icons/default.png

windows10-1703-x64

3

gui/icons/icons.ini

windows10-1703-x64

1

gui/theme/...rs.png

windows10-1703-x64

3

gui/theme/...al.png

windows10-1703-x64

3

gui/theme/...al.png

windows10-1703-x64

3

utils/XInp...en.txt

windows10-1703-x64

1

utils/XInp...ja.txt

windows10-1703-x64

1

utils/XInp...en.txt

windows10-1703-x64

1

utils/XInp...en.txt

windows10-1703-x64

1

utils/XInp...us.ini

windows10-1703-x64

1

utils/XInp...lt.ini

windows10-1703-x64

1

utils/XInp...me.txt

windows10-1703-x64

1

utils/XInp...me.txt

windows10-1703-x64

1

utils/devr...er.ini

windows10-1703-x64

1

utils/x360...ce.ini

windows10-1703-x64

1

utils/x360..._3.dll

windows10-1703-x64

3

Analysis

  • max time kernel
    12s
  • max time network
    17s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    31-07-2024 13:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    utils/x360ce/x360ce.ini

  • Size

    4KB

  • MD5

    21336a6c30bf8fcee6b16bf37337e8ea

  • SHA1

    0dc97749b74599bab0917eb868e082177a8241bb

  • SHA256

    d06182d765d556df5780ad25369998d0e53dfac6b34024107d55713d07287389

  • SHA512

    81f20e86fd73af613c48872c3013d8adb1b9121b741cd5ec7c8e268f0174eae6e7fb7e461b67728c6e5c72fa58b746cc51933a28ea84a7aaf60ca565fe196a10

  • SSDEEP

    48:r3UJBFOhzqXJdVdrWFrKW/8lF2llQh+AT/nv0pgM81W1yti0kNZg5jGNhZeXpYmX:rQDOruRlFIlnAbMn81WP60MLc56

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\utils\x360ce\x360ce.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:4772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads