Overview
overview
7Static
static
3Akko Cloud...1).exe
windows10-2004-x64
6$PLUGINSDI...er.dll
windows10-2004-x64
3$PLUGINSDI...ls.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...ll.dll
windows10-2004-x64
3Akko Cloud Driver.exe
windows10-2004-x64
7LICENSES.c...m.html
windows10-2004-x64
1d3dcompiler_47.dll
windows10-2004-x64
3ffmpeg.dll
windows10-2004-x64
3libEGL.dll
windows10-2004-x64
3libGLESv2.dll
windows10-2004-x64
3resources/...x.html
windows10-2004-x64
3resources/...da0.js
windows10-2004-x64
3resources/...er.exe
windows10-2004-x64
6resources/...x.html
windows10-2004-x64
3resources/...ain.js
windows10-2004-x64
3resources/...ing.js
windows10-2004-x64
3resources/...ges.js
windows10-2004-x64
3resources/...mes.js
windows10-2004-x64
3resources/...ils.js
windows10-2004-x64
3resources/...dex.js
windows10-2004-x64
3resources/...try.js
windows10-2004-x64
3resources/...ver.js
windows10-2004-x64
3resources/...try.js
windows10-2004-x64
3resources/...dex.js
windows10-2004-x64
3resources/...ote.js
windows10-2004-x64
3resources/...dex.js
windows10-2004-x64
3$PLUGINSDI...ec.dll
windows10-2004-x64
3$PLUGINSDI...7z.dll
windows10-2004-x64
3$R0/Uninst...er.exe
windows10-2004-x64
7$PLUGINSDI...ls.dll
windows10-2004-x64
3$PLUGINSDI...ll.dll
windows10-2004-x64
3Analysis
-
max time kernel
149s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
07-08-2024 01:48
Static task
static1
Behavioral task
behavioral1
Sample
Akko Cloud_setup_370.1.21(WIN20240531).exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral2
Sample
$PLUGINSDIR/SpiderBanner.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
$PLUGINSDIR/StdUtils.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
$PLUGINSDIR/WinShell.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral6
Sample
Akko Cloud Driver.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
LICENSES.chromium.html
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral8
Sample
d3dcompiler_47.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
ffmpeg.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral10
Sample
libEGL.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
libGLESv2.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral12
Sample
resources/app/dist/index.html
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
resources/app/dist/static/js/main_51c30da0.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral14
Sample
resources/app/iot_driver.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
resources/app/main_dist/index.html
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral16
Sample
resources/app/main_dist/main.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
resources/app/node_modules/@electron/remote/dist/src/common/get-electron-binding.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral18
Sample
resources/app/node_modules/@electron/remote/dist/src/common/ipc-messages.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
resources/app/node_modules/@electron/remote/dist/src/common/module-names.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral20
Sample
resources/app/node_modules/@electron/remote/dist/src/common/type-utils.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
resources/app/node_modules/@electron/remote/dist/src/main/index.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral22
Sample
resources/app/node_modules/@electron/remote/dist/src/main/objects-registry.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
resources/app/node_modules/@electron/remote/dist/src/main/server.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral24
Sample
resources/app/node_modules/@electron/remote/dist/src/renderer/callbacks-registry.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
resources/app/node_modules/@electron/remote/dist/src/renderer/index.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral26
Sample
resources/app/node_modules/@electron/remote/dist/src/renderer/remote.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
resources/app/node_modules/@electron/remote/main/index.js
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral28
Sample
$PLUGINSDIR/nsExec.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
$PLUGINSDIR/nsis7z.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral30
Sample
$R0/Uninstall Akko Cloud Driver.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
$PLUGINSDIR/StdUtils.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral32
Sample
$PLUGINSDIR/WinShell.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
resources/app/iot_driver.exe
-
Size
6.7MB
-
MD5
1ade1bea51eb0715af8d28a769e7a0c9
-
SHA1
be3d40c7cd5295a46dc393881287f95bc8c38ada
-
SHA256
7d05c01c41425a83d0c7d25dd991cbd8e1f865d51d04da53697a77afc4342227
-
SHA512
20672ed84da1a63f323cf72275a836eb3ba51c260d2a6e7f6a7ef5c7a599771b681823e056354dfed769fe4029a1732db76f368b23244362ba077f8f096c1b90
-
SSDEEP
196608:NkdMXoM/uEseXc93gOsP+abX6q0/qQ0aU/x6XfFEv0fEDHnWGfjRVLF4ckEN6hHq:NkdMXoM/uEseXc93gOsP+abX6q0/qQ0f
Malware Config
Signatures
-
Enumerates connected drives 3 TTPs 1 IoCs
Attempts to read the root path of hard drives other than the default C: drive.
description ioc Process File opened (read-only) \??\F: iot_driver.exe -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language iot_driver.exe -
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe 3076 iot_driver.exe