Overview

overview

3

Static

static

1

vrmodels_s...ami.gz

windows10-2004-x64

3

archtemp.tar

windows10-2004-x64

3

fdfaa847e8...thname

windows10-2004-x64

1

fe25882adb.../asset

windows10-2004-x64

1

fe25882adb...t.meta

windows10-2004-x64

3

fe25882adb...thname

windows10-2004-x64

1

fe6e1d6fa0.../asset

windows10-2004-x64

1

fe6e1d6fa0...t.meta

windows10-2004-x64

3

fe6e1d6fa0...thname

windows10-2004-x64

1

fe796807e2...et.png

windows10-2004-x64

3

fe796807e2...t.meta

windows10-2004-x64

3

fe796807e2...thname

windows10-2004-x64

1

fe796807e2...ew.png

windows10-2004-x64

3

fe89516ed5.../asset

windows10-2004-x64

1

fe89516ed5...t.meta

windows10-2004-x64

3

fe89516ed5...thname

windows10-2004-x64

1

fe931d0881.../asset

windows10-2004-x64

1

fe931d0881...t.meta

windows10-2004-x64

3

fe931d0881...thname

windows10-2004-x64

1

ff217b8452.../asset

windows10-2004-x64

1

ff217b8452...t.meta

windows10-2004-x64

3

ff217b8452...thname

windows10-2004-x64

1

ff217b8452...ew.png

windows10-2004-x64

3

ff30b18331...t.meta

windows10-2004-x64

3

ff30b18331...thname

windows10-2004-x64

1

ff487f343a.../asset

windows10-2004-x64

1

ff487f343a...t.meta

windows10-2004-x64

3

ff487f343a...thname

windows10-2004-x64

1

ff73be6db6.../asset

windows10-2004-x64

ff73be6db6...t.meta

windows10-2004-x64

3

ff73be6db6...thname

windows10-2004-x64

1

ff73be6db6...ew.png

windows10-2004-x64

3

Resubmissions

02/08/2024, 23:31

240802-3hpzxszblb 3

02/08/2024, 23:22

240802-3cwwaayhrb 3

Analysis

  • max time kernel
    1332s
  • max time network
    1160s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/08/2024, 23:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ff73be6db64204e4588fbe5c3cc4aeb5/asset.meta

  • Size

    188B

  • MD5

    f1a1e0f967e7cad920b213040bb4e4a0

  • SHA1

    4de0869198f6a93825ebac89b90bb9251eca7954

  • SHA256

    77e8a1a2ad1ec1b2c15deeb4a3fea26da95c872ce8bc34bf1e19a8156b1bbb30

  • SHA512

    70c7fd176b7c38be1a9cbf8678d632145fffc91e1901d251a1fe72b37cc490847a00005d379e678cb73347df725a5c2235c1ccd570b1fcaa0f5f2c6ab50fc236

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\ff73be6db64204e4588fbe5c3cc4aeb5\asset.meta
    1⤵
    • Modifies registry class
    PID:3924
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1320

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads