0374559668306d43193f847ecd48285f08ec4d8a47a8da4ce7f5624ebe707540

Submit
Reports

Overview

overview

Static

static

Angry Bird....2.rar

windows11-21h2-x64

Angry Bird...ME.txt

windows11-21h2-x64

Angry Bird...ME.txt

windows11-21h2-x64

Angry Bird...er.txt

windows11-21h2-x64

Angry Bird...ig.lua

windows11-21h2-x64

Angry Bird...ce.mp3

windows11-21h2-x64

Angry Bird...ty.mp3

windows11-21h2-x64

Angry Bird...sh.mp3

windows11-21h2-x64

Angry Bird...ah.mp3

windows11-21h2-x64

Angry Bird...st.mp3

windows11-21h2-x64

Angry Bird...nt.mp3

windows11-21h2-x64

Angry Bird...er.mp3

windows11-21h2-x64

Angry Bird...ty.mp3

windows11-21h2-x64

Angry Bird...on.mp3

windows11-21h2-x64

Angry Bird...sh.mp3

windows11-21h2-x64

Angry Bird...ah.mp3

windows11-21h2-x64

Angry Bird...st.mp3

windows11-21h2-x64

Angry Bird...ss.mp3

windows11-21h2-x64

Angry Bird...ro.mp3

windows11-21h2-x64

Angry Bird...ro.mp3

windows11-21h2-x64

Angry Bird...ce.mp3

windows11-21h2-x64

Angry Bird...ns.mp3

windows11-21h2-x64

Angry Bird...me.mp3

windows11-21h2-x64

Angry Bird...ry.exe

windows11-21h2-x64

Angry Bird...sh.txt

windows11-21h2-x64

Angry Bird...ns.lua

windows11-21h2-x64

Angry Bird...ks.lua

windows11-21h2-x64

Angry Bird...gic.js

windows11-21h2-x64

Angry Bird...st.lua

windows11-21h2-x64

Angry Bird...es.lua

windows11-21h2-x64

Angry Bird...ts.lua

windows11-21h2-x64

Angry Bird...00.dll

windows11-21h2-x64

Analysis

max time kernel
91s
max time network
102s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
12/09/2024, 20:57

Sharing

Copy URL

Twitter E-mail

Static task

static1

upx

2 signatures

Behavioral task

behavioral1

Sample

Angry Birds Maker Demo 0.9.2.rar

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Angry Birds Maker Demo 0.9.2/Editor info - Información del editor/LEEME.txt

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

Angry Birds Maker Demo 0.9.2/Editor info - Información del editor/READ ME.txt

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

Angry Birds Maker Demo 0.9.2/Facebook and twitter.txt

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

Angry Birds Maker Demo 0.9.2/config.lua

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/BeachAmbience.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral7

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/Original/ambient_city.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral8

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/Original/ambient_green_jungleish.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral9

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/Original/ambient_red_savannah.mp3

Resource

win11-20240802-en

windows11-21h2-x64

6 signatures

150 seconds

Behavioral task

behavioral10

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/Original/original_white_dryforest.mp3

Resource

win11-20240802-en

windows11-21h2-x64

6 signatures

150 seconds

Behavioral task

behavioral11

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ab_cave_ambient.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral12

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ambient_blander.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral13

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ambient_city.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral14

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ambient_construction.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral15

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ambient_green_jungleish.mp3

Resource

win11-20240802-en

windows11-21h2-x64

6 signatures

150 seconds

Behavioral task

behavioral16

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ambient_red_savannah.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral17

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/ambient_white_dryforest.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral18

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/birds_boss.mp3

Resource

win11-20240802-en

windows11-21h2-x64

6 signatures

150 seconds

Behavioral task

behavioral19

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/birds_intro.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral20

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/birds_outro.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral21

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/birthday_ambience.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral22

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/building_contraptions.mp3

Resource

win11-20240802-en

discovery

windows11-21h2-x64

8 signatures

150 seconds

Behavioral task

behavioral23

Sample

Angry Birds Maker Demo 0.9.2/data/audio/music/funky_theme.mp3

Resource

win11-20240802-en

windows11-21h2-x64

6 signatures

150 seconds

Behavioral task

behavioral24

Sample

Angry Birds Maker Demo 0.9.2/data/localization/angry.exe

Resource

win11-20240802-en

discovery upx

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral25

Sample

Angry Birds Maker Demo 0.9.2/data/localization/english.txt

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

Angry Birds Maker Demo 0.9.2/data/scripts/animations.lua

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

Angry Birds Maker Demo 0.9.2/data/scripts/blocks.lua

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral28

Sample

Angry Birds Maker Demo 0.9.2/data/scripts/gamelogic.js

Resource

win11-20240802-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

Angry Birds Maker Demo 0.9.2/data/scripts/loadlist.lua

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

Angry Birds Maker Demo 0.9.2/data/scripts/particles.lua

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

Angry Birds Maker Demo 0.9.2/data/scripts/starLimits.lua

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

Angry Birds Maker Demo 0.9.2/msvcr100.dll

Resource

win11-20240802-en

discovery

windows11-21h2-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

Angry Birds Maker Demo 0.9.2/Facebook and twitter.txt
Size

298B
MD5

a75c86679141b46b0433cc2261211c6f
SHA1

367bdd53b647c4e392dfe64f144631629c7d4b29
SHA256

4f5bd13ea23a4e6dbb14759307af8589fc298d4c3fb275ee435879bb43470abb
SHA512

ee846ec113aa39fd2384e83478b7067dfe7acee0453bc4a3feee2861dfeb47d9dea6fa6e14e83765200f3295ee568512245c38849cc237ac4a42075a6efcb1a8

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3761892313-3378554128-2287991803-1000_Classes\Local Settings	cmd.exe

Suspicious use of WriteProcessMemory 2 IoCs

description	pid	Process	procid_target
PID 832 wrote to memory of 2900	832	cmd.exe	80
PID 832 wrote to memory of 2900	832	cmd.exe	80

Processes

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Angry Birds Maker Demo 0.9.2\Facebook and twitter.txt"
1⤵
- Modifies registry class
- Suspicious use of WriteProcessMemory
PID:832
- C:\Windows\system32\NOTEPAD.EXE
  "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Angry Birds Maker Demo 0.9.2\Facebook and twitter.txt
  2⤵
  PID:2900

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads