Overview

overview

10

Static

static

10

Wondershar...s].rar

windows11-21h2-x64

8

Wondershar...on.ico

windows11-21h2-x64

3

Wondershar...fo.ini

windows11-21h2-x64

3

Wondershar...om.nsh

windows11-21h2-x64

3

Wondershar...le.ini

windows11-21h2-x64

3

Wondershar...o.json

windows11-21h2-x64

3

Wondershar...os.dat

windows11-21h2-x64

3

Wondershar...sdk.cf

windows11-21h2-x64

3

Wondershar...dk.log

windows11-21h2-x64

3

Wondershar...RA.dat

windows11-21h2-x64

3

Wondershar...AR.xml

windows11-21h2-x64

1

Wondershar...HS.xml

windows11-21h2-x64

1

Wondershar...HT.xml

windows11-21h2-x64

1

Wondershar...EU.xml

windows11-21h2-x64

1

Wondershar...NG.xml

windows11-21h2-x64

1

Wondershar...SN.xml

windows11-21h2-x64

1

Wondershar...RA.xml

windows11-21h2-x64

1

Wondershar...DN.xml

windows11-21h2-x64

1

Wondershar...TA.xml

windows11-21h2-x64

1

Wondershar...PN.xml

windows11-21h2-x64

1

Wondershar...OR.xml

windows11-21h2-x64

1

Wondershar...LD.xml

windows11-21h2-x64

1

Wondershar...TG.xml

windows11-21h2-x64

1

Wondershar...US.xml

windows11-21h2-x64

1

Wondershar...22.png

windows11-21h2-x64

3

Wondershar...25.jpg

windows11-21h2-x64

3

Wondershar...33.png

windows11-21h2-x64

3

Wondershar...39.png

windows11-21h2-x64

3

Wondershar...53.jpg

windows11-21h2-x64

3

Wondershar...54.jpg

windows11-21h2-x64

3

Wondershar...55.jpg

windows11-21h2-x64

3

Wondershar...56.jpg

windows11-21h2-x64

3

Analysis

  • max time kernel
    418s
  • max time network
    457s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    10-11-2024 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Wondershare UniConverter 15.6.1.25 Portable 64 Bit/App/AppInfo/Launcher/Custom.nsh

  • Size

    318B

  • MD5

    bbe513277457ab99e925ef551aeafa5e

  • SHA1

    d01e8aad373404a1e832b99f59814d31ebb6d930

  • SHA256

    368aee044b795ba6918871e20c768b73eb4a36dc9357cb4a5887ce0a474c763c

  • SHA512

    3cce56bac5fce273214f5d9341f7afb132af9ed5b9610eb25ce482c012f0d8de9182de60e16b64fbbb20c771aa544cd7006be41db6c542f89761892fd6faa09c

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Wondershare UniConverter 15.6.1.25 Portable 64 Bit\App\AppInfo\Launcher\Custom.nsh"
    1⤵
    • Modifies registry class
    PID:2028
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4588

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads