Overview

overview

7

Static

static

3

Minecraft....io.exe

windows11-21h2-x64

7

Data/Pytho...le.pyc

windows11-21h2-x64

3

Data/Pytho...y3.pyc

windows11-21h2-x64

3

Data/Pytho...ig.pyc

windows11-21h2-x64

3

Data/Pytho...ke.pyc

windows11-21h2-x64

3

Data/Pytho...cs.pyc

windows11-21h2-x64

3

Data/Pytho...rs.pyc

windows11-21h2-x64

3

Data/Pytho...as.pyc

windows11-21h2-x64

3

Data/Pytho...le.pyc

windows11-21h2-x64

3

Data/Pytho...me.pyc

windows11-21h2-x64

3

Data/Pytho...ng.pyc

windows11-21h2-x64

3

Data/Pytho...on.pyc

windows11-21h2-x64

3

Data/Pytho...ort.py

windows11-21h2-x64

3

Data/audio.dll

windows11-21h2-x64

3

Data/file.dll

windows11-21h2-x64

3

Data/gmbinaryfile.dll

windows11-21h2-x64

3

Data/midiinput.dll

windows11-21h2-x64

3

Data/move.bat

windows11-21h2-x64

1

Data/wallpaper.bat

windows11-21h2-x64

1

Data/window.dll

windows11-21h2-x64

3

DialogModule.dll

windows11-21h2-x64

3

ExecuteShell.dll

windows11-21h2-x64

3

FileDropper.dll

windows11-21h2-x64

3

Minecraft ...io.exe

windows11-21h2-x64

3

NBS Player Mode.bat

windows11-21h2-x64

3

NekoPresence.dll

windows11-21h2-x64

3

ffmpeg.exe

windows11-21h2-x64

3

ffprobe.exe

windows11-21h2-x64

3

pygml.dll

windows11-21h2-x64

3

python38.dll

windows11-21h2-x64

3

uninstall.exe

windows11-21h2-x64

7

window_set_icon.dll

windows11-21h2-x64

3

Analysis

  • max time kernel
    421s
  • max time network
    458s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240730-en
  • resource tags

    arch:x64arch:x86image:win11-20240730-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    01-08-2024 20:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Data/Python/Lib/site-packages/numpy/typing/tests/data/pass/ufunc_config.pyc

  • Size

    1KB

  • MD5

    6cb1ec22edf71e27d2f98b50e01063df

  • SHA1

    a94608e689684b3340fbaa75771bdbe6e2745624

  • SHA256

    babcf20cd13382e9e841666225f3696638f9e26d730d1d1253c6c57bd3aa3091

  • SHA512

    3275f1b53402e5c1d7254ab8ece6d12d512db9977b16f9d945e55a978bf0f4f265194d4849577a578bf8c3ed25749d5ea5cc8e8a656f6639d78884a8d88ca4b2

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Network Configuration Discovery: Internet Connection Discovery 1 TTPs 1 IoCs

    Adversaries may check for Internet connectivity on compromised systems.

    discovery
  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\Data\Python\Lib\site-packages\numpy\typing\tests\data\pass\ufunc_config.pyc
    1⤵
    • System Network Configuration Discovery: Internet Connection Discovery
    • Modifies registry class
    PID:2164
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:5048

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads