Overview

overview

7

Static

static

3

Minecraft....io.exe

windows11-21h2-x64

7

Data/Pytho...le.pyc

windows11-21h2-x64

3

Data/Pytho...y3.pyc

windows11-21h2-x64

3

Data/Pytho...ig.pyc

windows11-21h2-x64

3

Data/Pytho...ke.pyc

windows11-21h2-x64

3

Data/Pytho...cs.pyc

windows11-21h2-x64

3

Data/Pytho...rs.pyc

windows11-21h2-x64

3

Data/Pytho...as.pyc

windows11-21h2-x64

3

Data/Pytho...le.pyc

windows11-21h2-x64

3

Data/Pytho...me.pyc

windows11-21h2-x64

3

Data/Pytho...ng.pyc

windows11-21h2-x64

3

Data/Pytho...on.pyc

windows11-21h2-x64

3

Data/Pytho...ort.py

windows11-21h2-x64

3

Data/audio.dll

windows11-21h2-x64

3

Data/file.dll

windows11-21h2-x64

3

Data/gmbinaryfile.dll

windows11-21h2-x64

3

Data/midiinput.dll

windows11-21h2-x64

3

Data/move.bat

windows11-21h2-x64

1

Data/wallpaper.bat

windows11-21h2-x64

1

Data/window.dll

windows11-21h2-x64

3

DialogModule.dll

windows11-21h2-x64

3

ExecuteShell.dll

windows11-21h2-x64

3

FileDropper.dll

windows11-21h2-x64

3

Minecraft ...io.exe

windows11-21h2-x64

3

NBS Player Mode.bat

windows11-21h2-x64

3

NekoPresence.dll

windows11-21h2-x64

3

ffmpeg.exe

windows11-21h2-x64

3

ffprobe.exe

windows11-21h2-x64

3

pygml.dll

windows11-21h2-x64

3

python38.dll

windows11-21h2-x64

3

uninstall.exe

windows11-21h2-x64

7

window_set_icon.dll

windows11-21h2-x64

3

Analysis

  • max time kernel
    450s
  • max time network
    457s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240730-en
  • resource tags

    arch:x64arch:x86image:win11-20240730-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    01-08-2024 20:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Data/Python/Lib/site-packages/numpy/typing/tests/data/pass/simple.pyc

  • Size

    2KB

  • MD5

    b4c1048e346a436e36145e0871f08608

  • SHA1

    f75a4e3284e98897b85accb1c801f63ba696f2e0

  • SHA256

    6b2af3209b7c54542ea851734d97b3dabdc15cff1ec6684be412056f8b4ed7a3

  • SHA512

    21264490e16c67c6a022b78935580b48d7d37215529697e3cafd06fc970267c33fb183ed8456dec80fb17429c5f2f92ffa13b32ef29ba57864395c88a9b3907c

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Network Configuration Discovery: Internet Connection Discovery 1 TTPs 1 IoCs

    Adversaries may check for Internet connectivity on compromised systems.

    discovery
  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Data\Python\Lib\site-packages\numpy\typing\tests\data\pass\simple.pyc
    1⤵
    • System Network Configuration Discovery: Internet Connection Discovery
    • Modifies registry class
    PID:1476
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1292

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads