Overview

overview

3

Static

static

3

DevIL.dll

windows7-x64

1

DevIL.dll

windows10-2004-x64

1

HLLib.dll

windows7-x64

1

HLLib.dll

windows10-2004-x64

1

VTFEdit Reloaded.exe

windows7-x64

3

VTFEdit Reloaded.exe

windows10-2004-x64

3

VTFLib.dll

windows7-x64

1

VTFLib.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-10-2024 06:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VTFEdit Reloaded.exe

  • Size

    1.3MB

  • MD5

    ed102d50f2a26abb5eb242158d55e558

  • SHA1

    4f5e2664629c0aa3b799ca5741ce558a3f27201e

  • SHA256

    1eb98183ea64f6253d66a915e4b976ac6e382ce5b88955838d8d389fc9f97634

  • SHA512

    1f74fbeffaf65173d6e663ac7992fdb87ab7c3a127d3ff7bd160e9cd1d6406951ac583fe9c62f6b5be5bce5df9837fb8a313f8e9f34d834f28704fe05519340e

  • SSDEEP

    12288:R+hE38/1qzbpc5+Z28/1qzbz8/1qzb18/1qzbKJ78/1qzbz8/1qzbS65qdGOSP8i:RA6N626g6su626z5sS66B

Score
3/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\VTFEdit Reloaded.exe
    "C:\Users\Admin\AppData\Local\Temp\VTFEdit Reloaded.exe"
    1⤵
      PID:2620

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2620-0-0x00007FFAB0293000-0x00007FFAB0295000-memory.dmp

      Filesize

      8KB

      Download

    • memory/2620-1-0x00007FF608350000-0x00007FF6084A9000-memory.dmp

      Filesize

      1.3MB

      Download

    • memory/2620-2-0x00007FFAB0293000-0x00007FFAB0295000-memory.dmp

      Filesize

      8KB

      Download