Analysis

  • max time kernel
    443s
  • max time network
    445s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    10/11/2024, 21:15

General

  • Target

    mods/INSTALL_MODS.md

  • Size

    2KB

  • MD5

    7e2e8cb1f39a2ba27ca1877e190a2edf

  • SHA1

    0dde9c996ae640c742e419635668f873f1a4a529

  • SHA256

    61060658679fa5d2b7a60a88d86840b1d438e5f7d1ca30720a8e1c3615a1b0fc

  • SHA512

    0ccf9632d821fac3bd6ba2baf4a2ad12e582b04180051ef7356385e6d1a062e027e520f9e14888e9c28bb09e6b3fc6d336e49021f632c88f5c57537a98379153

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\mods\INSTALL_MODS.md
    1⤵
    • Modifies registry class
    PID:3264
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:3268

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads