Analysis
-
max time kernel
52s -
platform
windows11-21h2_x64 -
resource
win11-20240802-en -
resource tags
-
submitted
10/08/2024, 05:46
General
-
Target
RhythmSharp.exe
-
Size
8.7MB
-
MD5
ec457adeb9d86e97aad64744f46b0c5c
-
SHA1
e23058322c1ef34439b5a44db923228a497b76f6
-
SHA256
6d6f27074a5c75b16fa8e3446b15564a4a2ea30dd0b8d3474bc4067ce25214db
-
SHA512
7eb61432ee35dfe535f1ae0e8950066e83a476f1f64ac14eb0bad339202cc801b841a09e547014b3b588abffcc1bda0dafe1c13f7d8b891a8de0d1f2f8f6f1a3
-
SSDEEP
98304:tAMYxRNs9CB62DEDuUWFRaIbDy1w8Xm/XmM:adNL6JE9m1HW/X
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
-
Suspicious behavior: LoadsDriver 1 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\RhythmSharp.exe"C:\Users\Admin\AppData\Local\Temp\RhythmSharp.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
-
Filesize
3.1MB
-
Filesize
8.8MB
-
Filesize
4KB
-
Filesize
8.8MB
-
Filesize
3.1MB
-
Filesize
8.8MB
-
Filesize
8.8MB
-
Filesize
8.8MB
-
Filesize
3.1MB
-
Filesize
8.8MB