3d597b0edd887a7a169451ac87a434253f69db41dda24ed05a41cfeeb4861b7b

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

Heaven.Wil...ne.exe

windows7-x64

Heaven.Wil...ne.exe

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...ne.dll

windows7-x64

Heaven.Wil...ne.dll

windows10-2004-x64

Heaven.Wil...UI.dll

windows7-x64

Heaven.Wil...UI.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Heaven.Wil...le.dll

windows7-x64

Heaven.Wil...le.dll

windows10-2004-x64

Resubmissions

12/08/2024, 06:02

240812-grwm6ssfqc 7

12/08/2024, 05:19

240812-fz37jsxbqk 7

Analysis

max time kernel
147s
max time network
191s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
12/08/2024, 06:02

Sharing

Copy URL

Twitter E-mail

Static task

static1

upx

2 signatures

Behavioral task

behavioral1

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine.exe

Resource

win7-20240705-en

upx

windows7-x64

4 signatures

300 seconds

Behavioral task

behavioral2

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

300 seconds

Behavioral task

behavioral3

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.TerrainPhysicsModule.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral4

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.TerrainPhysicsModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral5

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.TextRenderingModule.dll

Resource

win7-20240729-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral6

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.TextRenderingModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral7

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.TilemapModule.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral8

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.TilemapModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral9

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.Timeline.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral10

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.Timeline.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral11

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UI.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral12

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UI.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral13

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UIElementsModule.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral14

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UIElementsModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral15

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UIModule.dll

Resource

win7-20240729-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral16

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UIModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral17

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UNETModule.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral18

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UNETModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral19

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityAnalyticsModule.dll

Resource

win7-20240705-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral20

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityAnalyticsModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral21

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityConnectModule.dll

Resource

win7-20240729-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral22

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityConnectModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral23

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestAudioModule.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral24

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestAudioModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral25

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestModule.dll

Resource

win7-20240705-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral26

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral27

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestTextureModule.dll

Resource

win7-20240705-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral28

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestTextureModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral29

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestWWWModule.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral30

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.UnityWebRequestWWWModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Behavioral task

behavioral31

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.VRModule.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

300 seconds

Behavioral task

behavioral32

Sample

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine_Data/Managed/UnityEngine.VRModule.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

300 seconds

Report Analysis Logs

General

Target

Heaven.Will.Be.Mine/Heaven Will Be Mine/HeavenWillBeMine.exe
Size

635KB
MD5

42b6538cdaaf017a408b1bf04e0cf28b
SHA1

ef28a03d80df05954786689f95fe7a942099f335
SHA256

76aabbd06c5dc729ec68d9bed383e2a18711bb286f62e5136d3682c6c852ddd0
SHA512

a8575c03c6e20e3dc9602b5bd4fa13b7dd7f5bcc7f816dc6e95b561e00f5f504931891b3ded3147d6a05eaa217e5e8e00739b3473f0bfc9ed3b65a9785bd9de8
SSDEEP

6144:V9fYunoPZRR1/FJ416Q7dbMdKVfl1llT+HYsSO/wF3a89QnQnPC8g/O4FIoCBuA1:E+oTnFJ48kQ+PFO/wjQnQPI20uu1K9

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2948	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	2948	AUDIODG.EXE

Processes

C:\Users\Admin\AppData\Local\Temp\Heaven.Will.Be.Mine\Heaven Will Be Mine\HeavenWillBeMine.exe
"C:\Users\Admin\AppData\Local\Temp\Heaven.Will.Be.Mine\Heaven Will Be Mine\HeavenWillBeMine.exe"
1⤵
PID:2688

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x404 0x4b4
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2688-1-0x0000025414FC0000-0x00000254150C0000-memory.dmp

Filesize
1024KB

Download
memory/2688-0-0x00000254156B0000-0x00000254157B0000-memory.dmp

Filesize
1024KB

Download
memory/2688-3-0x0000025414FC0000-0x00000254150C0000-memory.dmp

Filesize
1024KB

Download
memory/2688-2-0x00000254156B0000-0x00000254157B0000-memory.dmp

Filesize
1024KB

Download