Overview

overview

10

Static

static

10

zen.win-sp...al.dll

windows10-2004-x64

5

zen.win-sp...org.js

windows7-x64

3

zen.win-sp...org.js

windows10-2004-x64

3

zen.win-sp...org.js

windows7-x64

3

zen.win-sp...org.js

windows10-2004-x64

3

zen.win-sp...efs.js

windows7-x64

3

zen.win-sp...efs.js

windows10-2004-x64

3

zen.win-sp...l3.dll

windows10-2004-x64

1

zen.win-sp...cs.dll

windows10-2004-x64

1

zen.win-sp...ey.dll

windows10-2004-x64

1

zen.win-sp...ts.dll

windows10-2004-x64

1

zen.win-sp...bs.dll

windows10-2004-x64

1

zen.win-sp...GL.dll

windows10-2004-x64

1

zen.win-sp...v2.dll

windows10-2004-x64

1

zen.win-sp...ec.dll

windows10-2004-x64

1

zen.win-sp...il.dll

windows10-2004-x64

1

zen.win-sp...ue.dll

windows10-2004-x64

1

zen.win-sp...40.dll

windows7-x64

1

zen.win-sp...40.dll

windows10-2004-x64

1

zen.win-sp...xy.exe

windows7-x64

1

zen.win-sp...xy.exe

windows10-2004-x64

1

zen.win-sp...er.dll

windows10-2004-x64

1

zen.win-sp...s3.dll

windows10-2004-x64

1

zen.win-sp...bi.dll

windows10-2004-x64

1

zen.win-sp...ts.dll

windows10-2004-x64

1

zen.win-sp...er.exe

windows10-2004-x64

3

zen.win-sp...er.exe

windows10-2004-x64

1

zen.win-sp...ng.exe

windows10-2004-x64

1

zen.win-sp...n3.dll

windows10-2004-x64

1

zen.win-sp...er.exe

windows7-x64

4

zen.win-sp...er.exe

windows10-2004-x64

4

$PLUGINSDIR/UAC.dll

windows7-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    23-09-2024 19:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    zen.win-specific\zen\nmhproxy.exe

  • Size

    566KB

  • MD5

    9a59b537ae4389729b531ac94d7d7bbb

  • SHA1

    b6c03565a707ea820dd058e72c7c0525e3bb4226

  • SHA256

    d44988538dc9024dd18ed84d3c499410571905096fea79fc7063367ff26b7c77

  • SHA512

    c05c1a9b91c79dd3eb4e8787717cbb724f84f13fd8a991e900906227dc40c144e9300b8d23102df1db9146150d23f795526e3041f8c446982afd34d915b3bf05

  • SSDEEP

    12288:YYZBkprWXGDdYe7YnUnxlltafRiCKp/nqpxx:YikpWXWdc8Wx

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\zen.win-specific\zen\nmhproxy.exe
    "C:\Users\Admin\AppData\Local\Temp\zen.win-specific\zen\nmhproxy.exe"
    1⤵
      PID:1688

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads