Analysis
-
max time kernel
95s -
max time network
123s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
17-08-2024 09:52
Static task
static1
Behavioral task
behavioral1
Sample
UnZoom.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
UnZoom.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
Zoom.exe
Resource
win7-20240704-en
Behavioral task
behavioral4
Sample
Zoom.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
UnZoom.exe
Resource
win7-20240704-en
Behavioral task
behavioral6
Sample
UnZoom.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
Zoom.exe
Resource
win7-20240708-en
Behavioral task
behavioral8
Sample
Zoom.exe
Resource
win10v2004-20240802-en
General
-
Target
UnZoom.exe
-
Size
29KB
-
MD5
ee342b660535cca8ea63dbbe9be7a004
-
SHA1
a269e64dd39550c98ceca31a5ead80b40ac1c205
-
SHA256
6c135769414a72a560e2d6dcafc65c1559cde5d3d5dcd99571fd471711aed430
-
SHA512
d34921821c9013f86610e8c84128bcabd1aa1f6ebdd7c3c4ff8d94278b944d09cea033d7e2ff1ec659bf48339e300cf2efc3354b1de7284126c1c5a81d7621e5
-
SSDEEP
768:1m8pMMwLJZzbK+lx+0FHIdOI3MiPEsonqjtdNbTrLJFpMM9aiR:1m46Z1H2xNPDpThl
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language UnZoom.exe