Resubmissions
06/08/2024, 21:10
240806-z1afeathrd 1Analysis
-
max time kernel
42s -
max time network
16s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
06/08/2024, 21:10
General
-
Target
Deskbottom.zip
-
Size
287KB
-
MD5
81ce4bae3a508eb1eebf29587e35f273
-
SHA1
8f27f9c3b02553725ec3e8ad2ed54caea663de1f
-
SHA256
64f497986c95f90193a73a0fa622268b8ee6b8fe134250c6b0c2616e8f2f402d
-
SHA512
7ff4ca26ccf7de9bebf4d03ddba5f5eb1b3b09c801169cc4d11b6bc0576e9a976660e04ae0803a00d080a74aba5577ffb3f31e7255395cfe5087dda4691de11e
-
SSDEEP
6144:5Suoja3uokeOvHS1d1+sNs8wbiWQs9EvZJT3CqbMrhryf65NRPaCieMjAkvCJv1B:Doja3uokeOvHS1d1+sNs8wbiWQs9EvZE
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of FindShellTrayWindow 2 IoCs
-
Suspicious use of SendNotifyMessage 4 IoCs
Processes
-
C:\Windows\Explorer.exeC:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\Deskbottom.zip1⤵
-
C:\Windows\system32\SndVol.exeSndVol.exe -f 46269600 95331⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB