Overview

overview

10

Static

static

10

Wondershar...s].rar

windows11-21h2-x64

8

Wondershar...on.ico

windows11-21h2-x64

3

Wondershar...fo.ini

windows11-21h2-x64

3

Wondershar...om.nsh

windows11-21h2-x64

3

Wondershar...le.ini

windows11-21h2-x64

3

Wondershar...o.json

windows11-21h2-x64

3

Wondershar...os.dat

windows11-21h2-x64

3

Wondershar...sdk.cf

windows11-21h2-x64

3

Wondershar...dk.log

windows11-21h2-x64

3

Wondershar...RA.dat

windows11-21h2-x64

3

Wondershar...AR.xml

windows11-21h2-x64

1

Wondershar...HS.xml

windows11-21h2-x64

1

Wondershar...HT.xml

windows11-21h2-x64

1

Wondershar...EU.xml

windows11-21h2-x64

1

Wondershar...NG.xml

windows11-21h2-x64

1

Wondershar...SN.xml

windows11-21h2-x64

1

Wondershar...RA.xml

windows11-21h2-x64

1

Wondershar...DN.xml

windows11-21h2-x64

1

Wondershar...TA.xml

windows11-21h2-x64

1

Wondershar...PN.xml

windows11-21h2-x64

1

Wondershar...OR.xml

windows11-21h2-x64

1

Wondershar...LD.xml

windows11-21h2-x64

1

Wondershar...TG.xml

windows11-21h2-x64

1

Wondershar...US.xml

windows11-21h2-x64

1

Wondershar...22.png

windows11-21h2-x64

3

Wondershar...25.jpg

windows11-21h2-x64

3

Wondershar...33.png

windows11-21h2-x64

3

Wondershar...39.png

windows11-21h2-x64

3

Wondershar...53.jpg

windows11-21h2-x64

3

Wondershar...54.jpg

windows11-21h2-x64

3

Wondershar...55.jpg

windows11-21h2-x64

3

Wondershar...56.jpg

windows11-21h2-x64

3

Analysis

  • max time kernel
    427s
  • max time network
    472s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    10-11-2024 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Wondershare UniConverter 15.6.1.25 Portable 64 Bit/App/AppInfo/AppInfo.ini

  • Size

    139B

  • MD5

    6fe930afe1aef04a5856c7d23e134fcd

  • SHA1

    8a8d0c6ab1b083a756096f1b0d1e018c8ce2aa5f

  • SHA256

    d5e07dd04695f37ca071670cf89338167e6700a28f4d29446f4da1c7a50529f2

  • SHA512

    c1aa644a785e73c4cd800458918d399987d571c8a0ba5349914c5e5af381227926d07eb01265898abc61cca5707621802fbee9e27960de92687c7a299e210c15

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Wondershare UniConverter 15.6.1.25 Portable 64 Bit\App\AppInfo\AppInfo.ini"
    1⤵
    • Modifies registry class
    PID:756
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1216

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads