Overview

overview

3

Static

static

3

Blade_Injector.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    151s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    20/11/2024, 05:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Blade_Injector.exe

  • Size

    1.3MB

  • MD5

    9b70bfa14daeb54944e42b02f488797f

  • SHA1

    321c8915e7c33060954a15f9744e87f57a522486

  • SHA256

    41e4b26a61a4906145cc4a6751682888e9ba19f7e2d71f6500548e97c9b6f6a6

  • SHA512

    d963b61d45e1671d9fbce1c87d37973c1a42cceac6473688c79ca25143e0350a0caa6fd3466e8eee6b901ebe10e487c357b477bfd6d0cc30b4ccb31953fb0cc8

  • SSDEEP

    24576:/BRuX+xCvNQt5r4FlTPq5NZdM2mel9Zq5Ounp:/BRuXrvNQbzrn9Zq5Dn

Score
1/10

Malware Config

Signatures

  • Modifies registry class 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Blade_Injector.exe
    "C:\Users\Admin\AppData\Local\Temp\Blade_Injector.exe"
    1⤵
      PID:5108
    • C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
      "C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
      1⤵
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:3088

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
      Filesize

      10KB

      MD5

      96329c73cc49cd960e2485210d01c4d2

      SHA1

      a496b98ad2f2bbf26687b5b7794a26aa4470148e

      SHA256

      4c159cab6c9ef5ff39e6141b0ccb5b8c6251a3d637520609dfbdd852fa94d466

      SHA512

      e98736a879cad24c693d6c5939654b2fd25bf9d348f738668624214f22d541a9b781c967201ab2d43cbac9207946824a0299d482485f4b63c48d5d2a839e5baf

      Download Submit

    • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
      Filesize

      10KB

      MD5

      847a64ce22adca83e091e5403ef844ed

      SHA1

      f2cf8559f0eba3d237cee1162b811613d2a0c308

      SHA256

      1db255895b125edbed50b5296edafaf303dde2b93a600313b6a1aa61f9ec2b88

      SHA512

      94abff56e498bfd7af0e72a652a0b03d29cbe7d0322f43cb8fa4182cfa829ec6d608c5bb3f6deaaf1dcaae764c90036beedb503109c8080999dfaf2d6a2e9de6

      Download Submit