Overview

overview

3

Static

static

3

836ef92df7...18.exe

windows7-x64

3

836ef92df7...18.exe

windows10-2004-x64

3

$PLUGINSDI...up.exe

windows7-x64

3

$PLUGINSDI...up.exe

windows10-2004-x64

3

$PLUGINSDI...es.dll

windows7-x64

3

$PLUGINSDI...es.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$R1.exe

windows7-x64

$R1.exe

windows10-2004-x64

$PLUGINSDI...Ex.dll

windows7-x64

3

$PLUGINSDI...Ex.dll

windows10-2004-x64

3

$PLUGINSDI...es.dll

windows7-x64

3

$PLUGINSDI...es.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDIR/nswg.dll

windows7-x64

3

$PLUGINSDIR/nswg.dll

windows10-2004-x64

3

$PLUGINSDI...e.html

windows7-x64

3

$PLUGINSDI...e.html

windows10-2004-x64

3

$PLUGINSDI...w.html

windows7-x64

3

$PLUGINSDI...w.html

windows10-2004-x64

3

Analysis

  • max time kernel
    95s
  • max time network
    145s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240730-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240730-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-08-2024 06:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/FLVProPlayerSetup.exe

  • Size

    381KB

  • MD5

    9d90fb874befd1ba3c5b3937a2ed9819

  • SHA1

    e7da36e1ec73cf58d30cd084fc4cca5c44909020

  • SHA256

    a457a97eb2930afaad8649959e3904a2252fafe2e6695cc3a3de9ae7a0820fb5

  • SHA512

    dcd78f12342ed074765b4a4c171b34ea6d9d6c559811d1800709938f9742561854aa01e897e78e0a11590f6ccbcdd220831e96bfbff11c9086fdd7003b558c95

  • SSDEEP

    6144:XsBNvhbGcKHERHGM7TcdFldr20xDSsGM+s3T4wC47V2UaGLgsFmF60pAkNHqFnvb:ev1P0Y+FldzxmsZ+s3c3UaGLgseBpNHE

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\FLVProPlayerSetup.exe
    "C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\FLVProPlayerSetup.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:3984

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads