Analysis
-
max time kernel
114s -
max time network
119s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
14/09/2024, 05:49
General
-
Target
9b1cc332086894892e88de21eb9e0d80N.exe
-
Size
4.2MB
-
MD5
9b1cc332086894892e88de21eb9e0d80
-
SHA1
e526ca01059f76d48e09f1332254b4bd80c89e26
-
SHA256
9f2eb56edae0497317dedc4bb716384aaee149cef8705b2f026de97cfaba1506
-
SHA512
f94b56336643be9fa517eb6ae186348f90e2b045f78f50e089cbb94a27b50420bc374a366077a74b71d9a0769e06ab5ed6c0dd6630a2ec17bfa06b5c8646600b
-
SSDEEP
98304:nzuNBQ+ePhR3mCnsiq1s6Kzv4h78E6Ue1+ywss:nzR+ePjX7asrvU78+e1+pss
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\9b1cc332086894892e88de21eb9e0d80N.exe"C:\Users\Admin\AppData\Local\Temp\9b1cc332086894892e88de21eb9e0d80N.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4452,i,15336851255456239337,16379811035920490645,262144 --variations-seed-version --mojo-platform-channel-handle=4612 /prefetch:81⤵