Overview

overview

7

Static

static

7

MegaDownloader.exe

windows7-x64

7

MegaDownloader.exe

windows10-2004-x64

7

MegaVPN.exe

windows7-x64

1

MegaVPN.exe

windows10-2004-x64

1

Microsoft....es.dll

windows7-x64

1

Microsoft....es.dll

windows10-2004-x64

1

Newtonsoft.Json.dll

windows7-x64

1

Newtonsoft.Json.dll

windows10-2004-x64

1

ObjectListView.dll

windows7-x64

1

ObjectListView.dll

windows10-2004-x64

1

SharpCompress.dll

windows7-x64

1

SharpCompress.dll

windows10-2004-x64

1

System.AppContext.dll

windows7-x64

1

System.AppContext.dll

windows10-2004-x64

1

System.Buffers.dll

windows7-x64

1

System.Buffers.dll

windows10-2004-x64

1

System.Console.dll

windows7-x64

1

System.Console.dll

windows10-2004-x64

1

System.Glo...rs.dll

windows7-x64

1

System.Glo...rs.dll

windows10-2004-x64

1

System.IO....le.dll

windows7-x64

1

System.IO....le.dll

windows10-2004-x64

1

System.IO....on.dll

windows7-x64

1

System.IO....on.dll

windows10-2004-x64

1

System.IO....es.dll

windows7-x64

1

System.IO....es.dll

windows10-2004-x64

1

System.IO....em.dll

windows7-x64

1

System.IO....em.dll

windows10-2004-x64

1

System.Memory.dll

windows7-x64

1

System.Memory.dll

windows10-2004-x64

1

System.Net.Http.dll

windows7-x64

1

System.Net.Http.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    99s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-09-2024 17:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MegaVPN.exe

  • Size

    231KB

  • MD5

    ba1a3c2720f6e18edd51fbfae8b1d929

  • SHA1

    6afeb3ad6c46df7de16b9bf64d7a961bd40b3be3

  • SHA256

    2875813b92678b25d009bd15d8e4f13179c52678ac7d50364700e92d53e76239

  • SHA512

    dac8936923395befd3cbc750c50a856401e6b77d872c38cae13ba24dba149fd94a1380cf33f033c003b61f48d7ad68558f8f671d7e6ab27ee77285a3c606ea72

  • SSDEEP

    1536:FeZxibGMPOCe1Az2EV55g+38K1Az2EV55g+38tOFkus:wribGMP5CY5K+38GY5K+38QF1

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\MegaVPN.exe
    "C:\Users\Admin\AppData\Local\Temp\MegaVPN.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2736-0-0x00007FFE56CC3000-0x00007FFE56CC5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2736-1-0x000001F2025A0000-0x000001F2025E0000-memory.dmp

    Filesize

    256KB

    Download

  • memory/2736-2-0x000001F21D370000-0x000001F21DA24000-memory.dmp

    Filesize

    6.7MB

    Download

  • memory/2736-3-0x000001F21EDF0000-0x000001F2201A2000-memory.dmp

    Filesize

    19.7MB

    Download

  • memory/2736-4-0x000001F21DA30000-0x000001F21DF80000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2736-5-0x000001F2201B0000-0x000001F220984000-memory.dmp

    Filesize

    7.8MB

    Download

  • memory/2736-6-0x000001F21DF80000-0x000001F21E55C000-memory.dmp

    Filesize

    5.9MB

    Download

  • memory/2736-7-0x000001F21CDA0000-0x000001F21CE88000-memory.dmp

    Filesize

    928KB

    Download

  • memory/2736-8-0x000001F21CE90000-0x000001F21CF7A000-memory.dmp

    Filesize

    936KB

    Download

  • memory/2736-9-0x00007FFE56CC0000-0x00007FFE57781000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2736-10-0x000001F202B10000-0x000001F202B30000-memory.dmp

    Filesize

    128KB

    Download

  • memory/2736-11-0x000001F220B70000-0x000001F220C1A000-memory.dmp

    Filesize

    680KB

    Download

  • memory/2736-12-0x00007FFE56CC0000-0x00007FFE57781000-memory.dmp

    Filesize

    10.8MB

    Download