Overview

overview

7

Static

static

7

UbisoftCon...er.exe

windows7-x64

4

UbisoftCon...er.exe

windows10-2004-x64

4

$PLUGINSDI...ol.dll

windows7-x64

7

$PLUGINSDI...ol.dll

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ay.dll

windows7-x64

3

$PLUGINSDI...ay.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ry.dll

windows7-x64

3

$PLUGINSDI...ry.dll

windows10-2004-x64

3

GfnRuntimeSdkx86.dll

windows7-x64

3

GfnRuntimeSdkx86.dll

windows10-2004-x64

3

Microsoft....ns.dll

windows7-x64

3

Microsoft....ns.dll

windows10-2004-x64

1

UbisoftConnect.exe

windows7-x64

3

UbisoftConnect.exe

windows10-2004-x64

5

UbisoftExtension.exe

windows7-x64

1

UbisoftExtension.exe

windows10-2004-x64

5

UbisoftGam...er.exe

windows7-x64

3

UbisoftGam...er.exe

windows10-2004-x64

3

UbisoftGam...64.exe

windows7-x64

1

UbisoftGam...64.exe

windows10-2004-x64

1

Uninstall.exe

windows7-x64

4

Uninstall.exe

windows10-2004-x64

4

UplayCrash...er.exe

windows7-x64

1

UplayCrash...er.exe

windows10-2004-x64

5

UplayService.exe

windows7-x64

5

UplayService.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    1s
  • max time network
    31s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    01-09-2024 14:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    UbisoftConnect.exe

  • Size

    507KB

  • MD5

    031d24c2b5b45c8d5980936094c13c48

  • SHA1

    933c3bd5be1fe0f655cf5c49b9e32c804f52e8f3

  • SHA256

    4063c60bf11b12ec5072e9024e1f625e682b26689a8e816f05e50a5b07068df2

  • SHA512

    d93388ae400a523a7d6d8c5e1345bfaa11ec4bd9d33294be9dd74cf615728120a3becd6141b61164c3f443531ef9d8ec74cbf58b23419491ed500ae61b7f733f

  • SSDEEP

    6144:BcFpRE1eO52o+QMh3smMHsckDKdtcn8qXmGLC:BkAeO2B53smMQ+aLC

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 2 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\UbisoftConnect.exe
    "C:\Users\Admin\AppData\Local\Temp\UbisoftConnect.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of WriteProcessMemory
    PID:2040
    • C:\Users\Admin\AppData\Local\Temp\upc.exe
      "C:\Users\Admin\AppData\Local\Temp\upc.exe"
      2⤵
      • System Location Discovery: System Language Discovery
      PID:2132

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads