f58a1afc1dc58f057f867bba61d28fb42496200665a0a60b9a0024a1834198a5 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Install_Xf...b4.exe

windows7-x64

7

Install_Xf...b4.exe

windows10-2004-x64

7

$_13_/Skin...48.png

windows7-x64

3

$_13_/Skin...48.png

windows10-2004-x64

3

$_13_/Skin...49.png

windows7-x64

3

$_13_/Skin...49.png

windows10-2004-x64

3

$_13_/Skin...50.png

windows7-x64

3

$_13_/Skin...50.png

windows10-2004-x64

3

$_13_/Skin...51.png

windows7-x64

3

$_13_/Skin...51.png

windows10-2004-x64

3

$_13_/Skin...52.png

windows7-x64

3

$_13_/Skin...52.png

windows10-2004-x64

3

$_13_/Skin...53.png

windows7-x64

3

$_13_/Skin...53.png

windows10-2004-x64

3

$_13_/Skin...54.png

windows7-x64

3

$_13_/Skin...54.png

windows10-2004-x64

3

$_13_/Skin...55.png

windows7-x64

3

$_13_/Skin...55.png

windows10-2004-x64

3

$_13_/Skin...56.png

windows7-x64

3

$_13_/Skin...56.png

windows10-2004-x64

3

$_13_/Skin...57.png

windows7-x64

3

$_13_/Skin...57.png

windows10-2004-x64

3

$_13_/Skin...58.png

windows7-x64

3

$_13_/Skin...58.png

windows10-2004-x64

3

$_13_/Skin...59.png

windows7-x64

3

$_13_/Skin...59.png

windows10-2004-x64

3

$_13_/Skin...60.png

windows7-x64

3

$_13_/Skin...60.png

windows10-2004-x64

3

$_13_/Skin...62.png

windows7-x64

3

$_13_/Skin...62.png

windows10-2004-x64

3

$_13_/Skin...65.png

windows7-x64

3

$_13_/Skin...65.png

windows10-2004-x64

3

Analysis

max time kernel
137s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
14/08/2024, 11:38

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Install_Xfer_Serum_Update_121b4.exe

Resource

win7-20240708-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

Install_Xfer_Serum_Update_121b4.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

$_13_/Skins/Default/2x/bmp20248.png

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$_13_/Skins/Default/2x/bmp20248.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

$_13_/Skins/Default/2x/bmp20249.png

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$_13_/Skins/Default/2x/bmp20249.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

$_13_/Skins/Default/2x/bmp20250.png

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$_13_/Skins/Default/2x/bmp20250.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

$_13_/Skins/Default/2x/bmp20251.png

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$_13_/Skins/Default/2x/bmp20251.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

$_13_/Skins/Default/2x/bmp20252.png

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

$_13_/Skins/Default/2x/bmp20252.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

$_13_/Skins/Default/2x/bmp20253.png

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

$_13_/Skins/Default/2x/bmp20253.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

$_13_/Skins/Default/2x/bmp20254.png

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

$_13_/Skins/Default/2x/bmp20254.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

$_13_/Skins/Default/2x/bmp20255.png

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

$_13_/Skins/Default/2x/bmp20255.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

$_13_/Skins/Default/2x/bmp20256.png

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

$_13_/Skins/Default/2x/bmp20256.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

$_13_/Skins/Default/2x/bmp20257.png

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral22

Sample

$_13_/Skins/Default/2x/bmp20257.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

$_13_/Skins/Default/2x/bmp20258.png

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

$_13_/Skins/Default/2x/bmp20258.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

$_13_/Skins/Default/2x/bmp20259.png

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

$_13_/Skins/Default/2x/bmp20259.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

$_13_/Skins/Default/2x/bmp20260.png

Resource

win7-20240729-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

$_13_/Skins/Default/2x/bmp20260.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

$_13_/Skins/Default/2x/bmp20262.png

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$_13_/Skins/Default/2x/bmp20262.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

$_13_/Skins/Default/2x/bmp20265.png

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

$_13_/Skins/Default/2x/bmp20265.png

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

$_13_/Skins/Default/2x/bmp20257.png
Size

5KB
MD5

ce31d0c96ff96ddf05f4874cede208c0
SHA1

c41767157fe075106e44023792d792200ec738fa
SHA256

c02b9110bfa23fd738dc512f7f51c3b4b2a4f04ca728c98ad12ac4966ed00687
SHA512

fd2788130dcb7563dec617e1fefb86784b06946f280ee9fb76db8ad378a9bcfd6e2789eccae795d2185322bc7130780cf69419ca82d45d72a76e6ad7a76eeac5
SSDEEP

96:c8wZ7EFVoptMiauBYSHNLzuzyzuDrSiP1zYQF3PIgqMyQqcANu/Zu0ZqIN2yAJd:1H3AtMIYILkmKSc1YQFAbMyQqcr00DUN

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\$_13_\Skins\Default\2x\bmp20257.png
1⤵
PID:5016

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy