Analysis
-
max time kernel
133s -
max time network
137s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
26-10-2024 06:39
Static task
static1
Behavioral task
behavioral1
Sample
DevIL.dll
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
DevIL.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
HLLib.dll
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
HLLib.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
VTFEdit Reloaded.exe
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
VTFEdit Reloaded.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral7
Sample
VTFLib.dll
Resource
win7-20240903-en
Behavioral task
behavioral8
Sample
VTFLib.dll
Resource
win10v2004-20241007-en
General
-
Target
VTFEdit Reloaded.exe
-
Size
1.3MB
-
MD5
ed102d50f2a26abb5eb242158d55e558
-
SHA1
4f5e2664629c0aa3b799ca5741ce558a3f27201e
-
SHA256
1eb98183ea64f6253d66a915e4b976ac6e382ce5b88955838d8d389fc9f97634
-
SHA512
1f74fbeffaf65173d6e663ac7992fdb87ab7c3a127d3ff7bd160e9cd1d6406951ac583fe9c62f6b5be5bce5df9837fb8a313f8e9f34d834f28704fe05519340e
-
SSDEEP
12288:R+hE38/1qzbpc5+Z28/1qzbz8/1qzb18/1qzbKJ78/1qzbz8/1qzbS65qdGOSP8i:RA6N626g6su626z5sS66B
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).