1d37b7585b94ae72ff2b1f08ab084fd2e74ee265eb4b5a39616e8190e85e139e | Triage

Submit
Reports

Overview

overview

7

Static

static

3

ARP.exe

windows10-2004-x64

1

AggregatorHost.exe

windows10-2004-x64

1

AppHostReg...er.exe

windows10-2004-x64

1

AppInstall...te.exe

windows10-2004-x64

1

Applicatio...st.exe

windows10-2004-x64

1

ApplyTrustOffline.exe

windows10-2004-x64

1

ApproveChi...st.exe

windows10-2004-x64

1

AtBroker.exe

windows10-2004-x64

3

AuthHost.exe

windows10-2004-x64

1

AxInstUI.exe

windows10-2004-x64

1

Background...st.exe

windows10-2004-x64

1

BdeUISrv.exe

windows10-2004-x64

1

BioIso.exe

windows10-2004-x64

1

BitLockerD...on.exe

windows10-2004-x64

1

BitLockerW...ev.exe

windows10-2004-x64

1

ByteCodeGenerator.exe

windows10-2004-x64

1

CIDiag.exe

windows10-2004-x64

1

CameraSett...st.exe

windows10-2004-x64

1

CastSrv.exe

windows10-2004-x64

1

CertEnrollCtrl.exe

windows10-2004-x64

1

CheckNetIsolation.exe

windows10-2004-x64

1

CiTool.exe

windows10-2004-x64

1

ClipRenew.exe

windows10-2004-x64

1

ClipUp.exe

windows10-2004-x64

1

CloudExper...er.exe

windows10-2004-x64

1

CloudNotif...ns.exe

windows10-2004-x64

1

CompMgmtLauncher.exe

windows10-2004-x64

7

CompPkgSrv.exe

windows10-2004-x64

1

CompatTelRunner.exe

windows10-2004-x64

1

ComputerDefaults.exe

windows10-2004-x64

7

Credential...er.exe

windows10-2004-x64

1

Credential...er.exe

windows10-2004-x64

1

Analysis

max time kernel
133s
max time network
128s
platform
windows10-2004_x64
resource
win10v2004-20240910-en
resource tags

arch:x64arch:x86image:win10v2004-20240910-enlocale:en-usos:windows10-2004-x64system
submitted
01-10-2024 19:29

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ARP.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

AggregatorHost.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

AppHostRegistrationVerifier.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

AppInstallerBackgroundUpdate.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

ApplicationFrameHost.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

ApplyTrustOffline.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

ApproveChildRequest.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

AtBroker.exe

Resource

win10v2004-20240802-en

persistence privilege_escalation

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

AuthHost.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

AxInstUI.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

BackgroundTransferHost.exe

Resource

win10v2004-20240910-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

BdeUISrv.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

BioIso.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

BitLockerDeviceEncryption.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

BitLockerWizardElev.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

ByteCodeGenerator.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

CIDiag.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

CameraSettingsUIHost.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

CastSrv.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

CertEnrollCtrl.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

CheckNetIsolation.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

CiTool.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

ClipRenew.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

ClipUp.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

CloudExperienceHostBroker.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

CloudNotifications.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

CompMgmtLauncher.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral28

Sample

CompPkgSrv.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

CompatTelRunner.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

ComputerDefaults.exe

Resource

win10v2004-20240910-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

CredentialEnrollmentManager.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

CredentialUIBroker.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

BackgroundTransferHost.exe
Size

60KB
MD5

777bbc2e4dba510015f23789da4bb304
SHA1

61b3b6ec7d7ceed71e0effc7b011111749e18f6a
SHA256

09b6ecdff76eaf9a7ff6bddc8108f3424f1e35675ad4288acd3176f54c4997ca
SHA512

6368473a6352be757f800a2baaf1a91c8de9712d51184b76e36ac64243844574172f97caeaa2cddcc0fb5b309e7369758baa06533ff2c68832f4d149bca9aba2
SSDEEP

384:lY81FFMhllotNxXAs5LUUUt610Gsp2YAeYgU5W0AgWLQE0g7qW2RPT/8rFeZmJhE:lY+LXx5UPt6OgesEz2a

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\BackgroundTransferHost.exe
"C:\Users\Admin\AppData\Local\Temp\BackgroundTransferHost.exe"
1⤵
PID:2444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy