Overview

overview

10

Static

static

10

dba8e94820...3N.exe

windows7-x64

10

dba8e94820...3N.exe

windows10-2004-x64

10

$PLUGINSDI...SC.dll

windows7-x64

3

$PLUGINSDI...SC.dll

windows10-2004-x64

3

ETConnectServer.exe

windows7-x64

1

ETConnectServer.exe

windows10-2004-x64

1

ETConnectService.exe

windows7-x64

1

ETConnectService.exe

windows10-2004-x64

1

bin/MSLogonACL.exe

windows7-x64

1

bin/MSLogonACL.exe

windows10-2004-x64

3

bin/MSRC4Plugin.dll

windows7-x64

3

bin/MSRC4Plugin.dll

windows10-2004-x64

3

bin/SCHook.dll

windows7-x64

3

bin/SCHook.dll

windows10-2004-x64

3

bin/Secure...in.dll

windows7-x64

3

bin/Secure...in.dll

windows10-2004-x64

3

bin/authSSP.dll

windows7-x64

5

bin/authSSP.dll

windows10-2004-x64

3

bin/authadmin.dll

windows7-x64

3

bin/authadmin.dll

windows10-2004-x64

3

bin/ldapauth.dll

windows7-x64

3

bin/ldapauth.dll

windows10-2004-x64

3

bin/logging.dll

windows7-x64

5

bin/logging.dll

windows10-2004-x64

5

bin/logmessages.dll

windows7-x64

1

bin/logmessages.dll

windows10-2004-x64

1

bin/uvnc_settings.exe

windows7-x64

1

bin/uvnc_settings.exe

windows10-2004-x64

1

bin/vnchooks.dll

windows7-x64

3

bin/vnchooks.dll

windows10-2004-x64

3

bin/vncviewer.exe

windows7-x64

3

bin/vncviewer.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    13s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    25-11-2024 18:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bin/uvnc_settings.exe

  • Size

    314KB

  • MD5

    b37c19f8d76f58b8ebcb445e594f4d9a

  • SHA1

    51b5a2217e91c8c55e5b77a769f38ea4a846a87b

  • SHA256

    b8be90b283498091e0b9ab8e7d90616306d7d9dd2514630b2fb2b4f391886d9b

  • SHA512

    bc646beea9c7179cd974a7f5427face625c84c353a3f2b98041184543210ae4f4d23f92be505a327bc1f7788dce43329604432b9aac65416f88f3cd6565ec62c

  • SSDEEP

    6144:RWB2T5zB+zMAwEiF8OQm447OZe5Zc7Iksx9CHP++py:RWB294peQmeZejc7vC

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\bin\uvnc_settings.exe
    "C:\Users\Admin\AppData\Local\Temp\bin\uvnc_settings.exe"
    1⤵
      PID:2900

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\bin\ultravnc.ini
      Filesize

      1KB

      MD5

      2ab5f3325f0699cb6da40fe9db3953ed

      SHA1

      c6c5edb13264357dba85419b1492051bb0bda4b2

      SHA256

      7ab5e5527057ae0dd1a29dca96628cf5003668e3f37785188aad596c59b600a8

      SHA512

      330e6e9d669b390e550f15f8abe9d0ac7b5bfb01a0a3fc966f9f3e76b3149409eb0a9948a574599e2eb9eaa5819620795f3aa0d1b4216a7637593b124754f5d0

      Download Submit