b4fb522c3ace596c6464955c11a33f2de2fbc23a1eba91cbdcf3b4ced7e16413 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

geode-inst...in.exe

windows7-x64

7

geode-inst...in.exe

windows10-2004-x64

7

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

Geode.pdb

windows7-x64

3

Geode.pdb

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

3

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

5

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...et.xml

windows7-x64

3

geode/reso...et.xml

windows10-2004-x64

1

geode/reso...et.png

windows7-x64

3

geode/reso...et.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

3

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

3

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...et.xml

windows7-x64

3

geode/reso...et.xml

windows10-2004-x64

1

geode/reso...et.png

windows7-x64

3

geode/reso...et.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

3

geode/reso...hd.xml

windows10-2004-x64

1

Analysis

max time kernel
91s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
23-11-2024 23:18

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

geode-installer-v4.0.1-win.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

geode-installer-v4.0.1-win.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/modern-wizard.bmp

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/modern-wizard.bmp

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral5

Sample

Geode.pdb

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

Geode.pdb

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

geode/resources/geode.loader/APISheet-hd.xml

Resource

win7-20241010-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

geode/resources/geode.loader/APISheet-hd.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

geode/resources/geode.loader/APISheet-hd.png

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

geode/resources/geode.loader/APISheet-hd.png

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

geode/resources/geode.loader/APISheet-uhd.xml

Resource

win7-20240903-en

steam discovery phishing

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral12

Sample

geode/resources/geode.loader/APISheet-uhd.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

geode/resources/geode.loader/APISheet-uhd.png

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

geode/resources/geode.loader/APISheet-uhd.png

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

geode/resources/geode.loader/APISheet.xml

Resource

win7-20240729-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral16

Sample

geode/resources/geode.loader/APISheet.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

geode/resources/geode.loader/APISheet.png

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

geode/resources/geode.loader/APISheet.png

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

geode/resources/geode.loader/BlankSheet-hd.xml

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral20

Sample

geode/resources/geode.loader/BlankSheet-hd.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

geode/resources/geode.loader/BlankSheet-hd.png

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral22

Sample

geode/resources/geode.loader/BlankSheet-hd.png

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

geode/resources/geode.loader/BlankSheet-uhd.xml

Resource

win7-20240903-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral24

Sample

geode/resources/geode.loader/BlankSheet-uhd.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

geode/resources/geode.loader/BlankSheet-uhd.png

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

geode/resources/geode.loader/BlankSheet-uhd.png

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

geode/resources/geode.loader/BlankSheet.xml

Resource

win7-20240729-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral28

Sample

geode/resources/geode.loader/BlankSheet.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

geode/resources/geode.loader/BlankSheet.png

Resource

win7-20241023-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

geode/resources/geode.loader/BlankSheet.png

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

geode/resources/geode.loader/EventSheet-hd.xml

Resource

win7-20241010-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

geode/resources/geode.loader/EventSheet-hd.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

geode/resources/geode.loader/APISheet.xml
Size

16KB
MD5

a165e6f847feaf3401a9e80e6834e1be
SHA1

4fdb46be3c617dab728e54f08b1a30265981ce93
SHA256

7e03e949448fc9bee5bf968548919a1bb8b9bd4496e83bbde05bffd3994f5d5a
SHA512

c4ad97f08dfe8cc4a12655d719c51fc46c86a595751a18400887c679991a078b4fc861dc1c88aad1e1b17e84ec860b61c51d53f38449b915b52cced2aef17047
SSDEEP

96:CyQco4FGcNc2cFczXchcVPccFc/c0c1YcYcF0cBc6zcFcbc3cCcZzs4cgcDBScT8:XXQv/Dva5oLZj2

Score

1^/10

Malware Config

Signatures

Processes

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\geode\resources\geode.loader\APISheet.xml"
1⤵
PID:2456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2456-1-0x00007FFF0EE0D000-0x00007FFF0EE0E000-memory.dmp

Filesize
4KB

Download
memory/2456-0-0x00007FFECEDF0000-0x00007FFECEE00000-memory.dmp

Filesize
64KB

Download
memory/2456-2-0x00007FFF0ED70000-0x00007FFF0EF65000-memory.dmp

Filesize
2.0MB

Download
memory/2456-3-0x00007FFF0ED70000-0x00007FFF0EF65000-memory.dmp

Filesize
2.0MB

Download
memory/2456-4-0x00007FFF0ED70000-0x00007FFF0EF65000-memory.dmp

Filesize
2.0MB

Download

© 2018-2025

Terms | Privacy