Analysis
-
max time kernel
93s -
max time network
95s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
04-08-2024 13:42
Behavioral task
behavioral1
Sample
XV2SSEdit.exe
Resource
win7-20240705-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
XV2SSEdit.exe
Resource
win10v2004-20240802-en
1 signatures
150 seconds
General
-
Target
XV2SSEdit.exe
-
Size
417KB
-
MD5
9a44e26a185c804fe8e61b0b9690f6bc
-
SHA1
e9d58fa5912012034828df2e0959eddfd0532ab0
-
SHA256
d52a48caa0e3480fc26b6a6f216c0a7af0c3ee20a68b6b2420355f8a1d8f65cf
-
SHA512
c894d1b3131f64af671ba8a8b5bd37b55c6afe80e9c866caf7b74e46abd73f1db20d6aeb1946e14dbee10d60d125a8d488b9a196193f942945f07aa858afd462
-
SSDEEP
12288:c+fUpi4O/gL6nc17xnc1yrlR3GpRcxTmnkN5Dpv76H/ZovPM6wn:iO/FnkvDpeH/KvTwn
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes:
XV2SSEdit.exedescription ioc process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language XV2SSEdit.exe