Overview

overview

3

Static

static

3

ULTIMATE K....0.exe

windows7-x64

1

ULTIMATE K....0.exe

windows10-2004-x64

1

ULTIMATE K...or.exe

windows7-x64

3

ULTIMATE K...or.exe

windows10-2004-x64

1

ULTIMATE K...gs.url

windows7-x64

1

ULTIMATE K...gs.url

windows10-2004-x64

1

ULTIMATE K...ar.url

windows7-x64

1

ULTIMATE K...ar.url

windows10-2004-x64

1

ULTIMATE K...ns.url

windows7-x64

1

ULTIMATE K...ns.url

windows10-2004-x64

1

ULTIMATE K...th.url

windows7-x64

1

ULTIMATE K...th.url

windows10-2004-x64

1

ULTIMATE K...gs.url

windows7-x64

1

ULTIMATE K...gs.url

windows10-2004-x64

1

ULTIMATE K...ps.url

windows7-x64

1

ULTIMATE K...ps.url

windows10-2004-x64

1

ULTIMATE K...y).url

windows7-x64

1

ULTIMATE K...y).url

windows10-2004-x64

1

ULTIMATE K...PI.dll

windows7-x64

1

ULTIMATE K...PI.dll

windows10-2004-x64

1

ULTIMATE K...ut.dll

windows7-x64

1

ULTIMATE K...ut.dll

windows10-2004-x64

1

ULTIMATE K...UI.exe

windows7-x64

3

ULTIMATE K...UI.exe

windows10-2004-x64

1

ULTIMATE K...PI.dll

windows7-x64

1

ULTIMATE K...PI.dll

windows10-2004-x64

1

ULTIMATE K...ut.dll

windows7-x64

1

ULTIMATE K...ut.dll

windows10-2004-x64

1

ULTIMATE K...UI.exe

windows7-x64

1

ULTIMATE K...UI.exe

windows10-2004-x64

1

ULTIMATE K...PI.dll

windows7-x64

1

ULTIMATE K...PI.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/09/2024, 18:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ULTIMATE KASU/DWMLUT (COLORS)/LUT GUI ( windows 11 only )/DwmLutGUI.exe

  • Size

    49KB

  • MD5

    63f7f666bfa56cacba56fc0129a0acd8

  • SHA1

    8543846c7732b0c18a9683c0f1e325e73cfd1ef6

  • SHA256

    0cd2d1a215c1e9e8e58a4c9186df8c9cd7b270aec96b841816eaac67988855e8

  • SHA512

    061df5e4e13d2da6a5fc0fb4a70eb8fbb01c7d99213d3d2cacf1e80733a9d0cf6e483789b06f3d36fbbf1afda80b2e94f9b760767afb16246455fcf3d2c006de

  • SSDEEP

    768:S0jb/3L2WTtbFKChJ0i5zv3RdNrICIB31CxEH8kSiJVDDDDDRVDDDDDsStYcFwVY:vBTVFKCP3z3NrICIBlT8kSi0+wVcl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 3 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ULTIMATE KASU\DWMLUT (COLORS)\LUT GUI ( windows 11 only )\DwmLutGUI.exe
    "C:\Users\Admin\AppData\Local\Temp\ULTIMATE KASU\DWMLUT (COLORS)\LUT GUI ( windows 11 only )\DwmLutGUI.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:3096

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3096-0-0x00007FFF27873000-0x00007FFF27875000-memory.dmp

          Filesize

          8KB

          Download

        • memory/3096-1-0x000001B0DA8C0000-0x000001B0DA8D2000-memory.dmp

          Filesize

          72KB

          Download

        • memory/3096-2-0x000001B0DC510000-0x000001B0DC526000-memory.dmp

          Filesize

          88KB

          Download

        • memory/3096-3-0x00007FFF27870000-0x00007FFF28331000-memory.dmp

          Filesize

          10.8MB

          Download

        • memory/3096-4-0x00007FFF27870000-0x00007FFF28331000-memory.dmp

          Filesize

          10.8MB

          Download

        • memory/3096-5-0x00007FFF27870000-0x00007FFF28331000-memory.dmp

          Filesize

          10.8MB

          Download