Overview

overview

3

Static

static

1

vrmodels_s...ami.gz

windows10-2004-x64

3

archtemp.tar

windows10-2004-x64

3

fdfaa847e8...thname

windows10-2004-x64

1

fe25882adb.../asset

windows10-2004-x64

1

fe25882adb...t.meta

windows10-2004-x64

3

fe25882adb...thname

windows10-2004-x64

1

fe6e1d6fa0.../asset

windows10-2004-x64

1

fe6e1d6fa0...t.meta

windows10-2004-x64

3

fe6e1d6fa0...thname

windows10-2004-x64

1

fe796807e2...et.png

windows10-2004-x64

3

fe796807e2...t.meta

windows10-2004-x64

3

fe796807e2...thname

windows10-2004-x64

1

fe796807e2...ew.png

windows10-2004-x64

3

fe89516ed5.../asset

windows10-2004-x64

1

fe89516ed5...t.meta

windows10-2004-x64

3

fe89516ed5...thname

windows10-2004-x64

1

fe931d0881.../asset

windows10-2004-x64

1

fe931d0881...t.meta

windows10-2004-x64

3

fe931d0881...thname

windows10-2004-x64

1

ff217b8452.../asset

windows10-2004-x64

1

ff217b8452...t.meta

windows10-2004-x64

3

ff217b8452...thname

windows10-2004-x64

1

ff217b8452...ew.png

windows10-2004-x64

3

ff30b18331...t.meta

windows10-2004-x64

3

ff30b18331...thname

windows10-2004-x64

1

ff487f343a.../asset

windows10-2004-x64

1

ff487f343a...t.meta

windows10-2004-x64

3

ff487f343a...thname

windows10-2004-x64

1

ff73be6db6.../asset

windows10-2004-x64

ff73be6db6...t.meta

windows10-2004-x64

3

ff73be6db6...thname

windows10-2004-x64

1

ff73be6db6...ew.png

windows10-2004-x64

3

Resubmissions

02-08-2024 23:31

240802-3hpzxszblb 3

02-08-2024 23:22

240802-3cwwaayhrb 3

Analysis

  • max time kernel
    426s
  • max time network
    1157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-08-2024 23:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe6e1d6fa07f48c42be3218023e52435/asset.meta

  • Size

    189B

  • MD5

    e12b43cb61633ef1d4cc704798b0ab6d

  • SHA1

    74ca6d29d8ea645d4f2fd31feaa172738932f9a2

  • SHA256

    5012c2cc697bcffc6b37bf2f8b09245862ab53a7ed5c63e8efd3a44c4c4565ac

  • SHA512

    ffe6e6cb2e00cd3cfaebc896b97730d9859599ee817d4633bd8e3ff5426f8a7b41a6a6b88cd166367dc3f62415762419f281990a1af924f2222dd447f304fdb7

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\fe6e1d6fa07f48c42be3218023e52435\asset.meta
    1⤵
    • Modifies registry class
    PID:3528
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:2004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads