Analysis
-
max time kernel
150s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
13/08/2024, 23:08
General
-
Target
OverflowRust-master/OverflowDriver/helpers.h
-
Size
20KB
-
MD5
4bb364128715c34e1210c08420a93368
-
SHA1
6827e9081f7713dbab9f504ea269cd1fb3a80cd4
-
SHA256
3c76351a91c74ae36b0f536ff0551aca09e555ed4e5f2c50992e650f61fc2af7
-
SHA512
2157cbfa10703202b4a7746e9915f0dce8b6ab18dc3c014f826f1815b3ecbf52275438989f5fd961d2e0735e3ec127aaa2f753ffd0ad8655e822cd5c58fe96df
-
SSDEEP
384:6+1rkFI0G0T2g+JZWZ/BL0ihUGu849yx2p6o7z:h5iVd+ulA
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Modifies registry class 2 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Windows\system32\cmd.execmd /c C:\Users\Admin\AppData\Local\Temp\OverflowRust-master\OverflowDriver\helpers.h1⤵
- Modifies registry class
-
C:\Windows\system32\OpenWith.exeC:\Windows\system32\OpenWith.exe -Embedding1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx