Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    11/09/2024, 13:20

General

  • Target

    TTPlayer/Plugins/Dfx/dfxwsettings.exe

  • Size

    68KB

  • MD5

    ef43f37118540e77c870c50fe0d7af6e

  • SHA1

    96d52fe77fc95975bbb013cfdb3c3fc248daf786

  • SHA256

    f63ec37da539ea53ee3e346ed2fef8ec0eadaa2818241336aece49a35e7eff43

  • SHA512

    268235f7be0c7391046f133e991540ac66f157079a8fe179caf40d682c616ba786a22c2ecf3a80b374627e6fcb759e5926e148c2013fb59bb34195e47ec5d987

  • SSDEEP

    1536:09jP/486THr9ds6KjpKJ6THr9ds6KjpK:0R48eL0pKJeL0pK

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\TTPlayer\Plugins\Dfx\dfxwsettings.exe
    "C:\Users\Admin\AppData\Local\Temp\TTPlayer\Plugins\Dfx\dfxwsettings.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1708

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads