18139a654a7161b085bb900abbe306b08694874d9288369f56e065c54af6f3f0

Submit
Reports

Overview

overview

Static

static

captainsim...es.rar

windows7-x64

captainsim...es.rar

windows10-2004-x64

captainsim...tz.ttf

windows7-x64

captainsim...tz.ttf

windows10-2004-x64

captainsim...ar.ttf

windows7-x64

captainsim...ar.ttf

windows10-2004-x64

captainsim...ch.flt

windows7-x64

captainsim...ch.flt

windows10-2004-x64

captainsim...se.flt

windows7-x64

captainsim...se.flt

windows10-2004-x64

captainsim...ft.cfg

windows7-x64

captainsim...ft.cfg

windows10-2004-x64

captainsim...on.flt

windows7-x64

captainsim...on.flt

windows10-2004-x64

captainsim...as.cfg

windows7-x64

captainsim...as.cfg

windows10-2004-x64

captainsim...mb.flt

windows7-x64

captainsim...mb.flt

windows10-2004-x64

captainsim...es.cfg

windows7-x64

captainsim...es.cfg

windows10-2004-x64

captainsim...al.flt

windows7-x64

captainsim...al.flt

windows10-2004-x64

captainsim...el.cfg

windows7-x64

captainsim...el.cfg

windows10-2004-x64

captainsim...ay.cfg

windows7-x64

captainsim...ay.cfg

windows10-2004-x64

captainsim...04.bin

windows7-x64

captainsim...04.bin

windows10-2004-x64

captainsim...4.gltf

windows7-x64

captainsim...4.gltf

windows10-2004-x64

captainsim...04.xml

windows7-x64

captainsim...04.xml

windows10-2004-x64

Analysis

max time kernel
141s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
28/09/2024, 17:50

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

captainsim-aircraft-m774-v1-3-0-updated-liveries.rar

Resource

win7-20240903-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

captainsim-aircraft-m774-v1-3-0-updated-liveries.rar

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

captainsim-aircraft-m774/Captain_Sim/fonts/Quartz.ttf

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

captainsim-aircraft-m774/Captain_Sim/fonts/Quartz.ttf

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

captainsim-aircraft-m774/Captain_Sim/fonts/Roboto-Regular.ttf

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

captainsim-aircraft-m774/Captain_Sim/fonts/Roboto-Regular.ttf

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral7

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/Approach.flt

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral8

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/Approach.flt

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/Cruise.flt

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral10

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/Cruise.flt

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/aircraft.cfg

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral12

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/aircraft.cfg

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral13

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/apron.flt

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral14

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/apron.flt

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/cameras.cfg

Resource

win7-20240729-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral16

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/cameras.cfg

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral17

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/climb.flt

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral18

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/climb.flt

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/engines.cfg

Resource

win7-20240708-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral20

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/engines.cfg

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/final.flt

Resource

win7-20240704-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral22

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/final.flt

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral23

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/flight_model.cfg

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral24

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/flight_model.cfg

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral25

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/gameplay.cfg

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral26

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/gameplay.cfg

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.bin

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral28

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.bin

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.gltf

Resource

win7-20240729-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral30

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.gltf

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.xml

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.xml

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

captainsim-aircraft-m774/SimObjects/Airplanes/CS_B777F_GE110B1/model/m774_404.xml
Size

31KB
MD5

235afcc25e6f7c8c5d9b01a7776af677
SHA1

896ce6e231da6e619e8963661788ed81194b6731
SHA256

0d5b603c6ce47cb46130886b31a73f905b5cc3e0d79023dd9725303ff5a76e9a
SHA512

e09cf61e7ec92bc7501905c94de6c5cfe8b7ec033826cc39126835560b1de9a687fffa98b06da8f548d2926f2364e92625afc3c97c8a8769bf364693463b5931
SSDEEP

384:dTNg0f/EZwaMjjsAzU8VA1A7ArAUAxACAXAgASABTho3z+g:dT8qqOscDiJwnZy

Score

1^/10

Malware Config

Signatures

Processes

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\captainsim-aircraft-m774\SimObjects\Airplanes\CS_B777F_GE110B1\model\m774_404.xml"
1⤵
PID:3932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3932-0-0x00007FFD54770000-0x00007FFD54780000-memory.dmp

Filesize
64KB

Download
memory/3932-1-0x00007FFD9478D000-0x00007FFD9478E000-memory.dmp

Filesize
4KB

Download
memory/3932-3-0x00007FFD946F0000-0x00007FFD948E5000-memory.dmp

Filesize
2.0MB

Download
memory/3932-2-0x00007FFD946F0000-0x00007FFD948E5000-memory.dmp

Filesize
2.0MB

Download
memory/3932-4-0x00007FFD946F0000-0x00007FFD948E5000-memory.dmp

Filesize
2.0MB

Download