Overview

overview

3

Static

static

3

Tulpical.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    11s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    19-08-2024 13:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Tulpical.exe

  • Size

    1.3MB

  • MD5

    7b0e6bc080da00a4bb6d58a52143a968

  • SHA1

    b1c92b979ec66c3224b0c9b9a950152396b3cca8

  • SHA256

    c639fa0e1df8bbba1012aeed41741edfaec4972d739ad43f5f2c89a6ca95cd1a

  • SHA512

    299c43386b1798f29646f1b1e3d5def42c47b8bc2313ded80345da8394d6026dad6c07b08c00ad853683aacbd209dd30b3178a2ad828ec5ba7faa0c5e181bf22

  • SSDEEP

    24576:bDbbb+fGfNv4PRq8wTcHcGfjAoH9xLOp7+kkG71KHVP7EBtdzARCL17RA8Zonh/d:TWeeMFzkG78P7EBttYCL1dCh/QcmYD

Score
1/10

Malware Config

Signatures

  • Modifies registry class 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Tulpical.exe
    "C:\Users\Admin\AppData\Local\Temp\Tulpical.exe"
    1⤵
      PID:1296
    • C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
      "C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
      1⤵
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:2752

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
      Filesize

      10KB

      MD5

      7fc1af6f45e844eedd1a78d89ba2813d

      SHA1

      bdd93c47e99e7da95f5888d01cb85550f8fae9ab

      SHA256

      87577decf9290f786d76c3e9885e490106a7b00dd8a9b43471ff32f9eddd612e

      SHA512

      e79bc304620d23981c9bc03ada331755eaf74f356f32461bced715ef6e5c3ceab947a5a1dc51ef9061427b5c9132f58b1c14cce33960dd469c066ec4458abe86

      Download Submit

    • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
      Filesize

      10KB

      MD5

      a7f391566ceb7d310b04c1376aa66a07

      SHA1

      eda88e9134d3de209152481c9e8aa02054d4c2eb

      SHA256

      8ecb81fa22792fa6bb09abc86b9b5afb50773e2c5537def45dd8ba297f6c714e

      SHA512

      163bad20eaa9108286367367e6a54a9ac612026954ee2466b8f88f732a992695fe160d3fb5f092976ef15c1c1b71400e577a9a4833dfa616d7c9ee6a8237033c

      Download Submit