9504fbdc366ff1c3d41b463c5cd8d87fbf5eef9755a578ceb90ce18c3f751986

Submit
Reports

Overview

overview

Static

static

Crosshair-...er.rar

windows11-21h2-x64

Crosshair-...-X.exe

windows11-21h2-x64

Crosshair-...get.js

windows11-21h2-x64

Crosshair-...get.js

windows11-21h2-x64

Crosshair-...c.lock

windows11-21h2-x64

Crosshair-...c.yaml

windows11-21h2-x64

Crosshair-...t.dart

windows11-21h2-x64

Crosshair-...on.png

windows11-21h2-x64

Crosshair-...92.png

windows11-21h2-x64

Crosshair-...12.png

windows11-21h2-x64

Crosshair-...92.png

windows11-21h2-x64

Crosshair-...12.png

windows11-21h2-x64

Crosshair-...x.html

windows11-21h2-x64

Crosshair-...t.json

windows11-21h2-x64

Crosshair-...ignore

windows11-21h2-x64

Crosshair-...ts.txt

windows11-21h2-x64

Crosshair-...ts.txt

windows11-21h2-x64

Crosshair-...ant.cc

windows11-21h2-x64

Crosshair-...rant.h

windows11-21h2-x64

Crosshair-....cmake

windows11-21h2-x64

Crosshair-...ts.txt

windows11-21h2-x64

Crosshair-...ner.rc

windows11-21h2-x64

Crosshair-...ow.cpp

windows11-21h2-x64

Crosshair-...ndow.h

windows11-21h2-x64

Crosshair-...in.cpp

windows11-21h2-x64

Crosshair-...urce.h

windows11-21h2-x64

Crosshair-...on.ico

windows11-21h2-x64

Crosshair-...xe.xml

windows11-21h2-x64

Crosshair-...ls.cpp

windows11-21h2-x64

Crosshair-...tils.h

windows11-21h2-x64

Crosshair-...ow.cpp

windows11-21h2-x64

Crosshair-...ndow.h

windows11-21h2-x64

Analysis

max time kernel
93s
max time network
94s
platform
windows11-21h2_x64
resource
win11-20241007-de
resource tags

arch:x64arch:x86image:win11-20241007-delocale:de-deos:windows11-21h2-x64systemwindows
submitted
06/12/2024, 13:19

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Crosshair-X-Crack-master.rar

Resource

win11-20241007-de

windows11-21h2-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

Crosshair-X-Crack-master/Crosshair-X.exe

Resource

win11-20241023-de

lumma discovery stealer

windows11-21h2-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

Crosshair-X-Crack-master/lib/widget/textfield/textfield_email_widget.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

Crosshair-X-Crack-master/lib/widget/textfield/textfield_pass_widget.js

Resource

win11-20241007-de

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

Crosshair-X-Crack-master/pubspec.lock

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

Crosshair-X-Crack-master/pubspec.yaml

Resource

win11-20241023-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Crosshair-X-Crack-master/test/widget_test.dart

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

Crosshair-X-Crack-master/web/favicon.png

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

Crosshair-X-Crack-master/web/icons/Icon-192.png

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

Crosshair-X-Crack-master/web/icons/Icon-512.png

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

Crosshair-X-Crack-master/web/icons/Icon-maskable-192.png

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

Crosshair-X-Crack-master/web/icons/Icon-maskable-512.png

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

Crosshair-X-Crack-master/web/index.html

Resource

win11-20241007-de

windows11-21h2-x64

7 signatures

150 seconds

Behavioral task

behavioral14

Sample

Crosshair-X-Crack-master/web/manifest.json

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

Crosshair-X-Crack-master/windows/.gitignore

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral16

Sample

Crosshair-X-Crack-master/windows/CMakeLists.txt

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral17

Sample

Crosshair-X-Crack-master/windows/flutter/CMakeLists.txt

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

Crosshair-X-Crack-master/windows/flutter/generated_plugin_registrant.cc

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Crosshair-X-Crack-master/windows/flutter/generated_plugin_registrant.h

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral20

Sample

Crosshair-X-Crack-master/windows/flutter/generated_plugins.cmake

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

Crosshair-X-Crack-master/windows/runner/CMakeLists.txt

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral22

Sample

Crosshair-X-Crack-master/windows/runner/Runner.rc

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral23

Sample

Crosshair-X-Crack-master/windows/runner/flutter_window.cpp

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral24

Sample

Crosshair-X-Crack-master/windows/runner/flutter_window.h

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral25

Sample

Crosshair-X-Crack-master/windows/runner/main.cpp

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

Crosshair-X-Crack-master/windows/runner/resource.h

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

Crosshair-X-Crack-master/windows/runner/resources/app_icon.ico

Resource

win11-20241007-de

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

Crosshair-X-Crack-master/windows/runner/runner.exe.xml

Resource

win11-20241007-de

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

Crosshair-X-Crack-master/windows/runner/utils.cpp

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

Crosshair-X-Crack-master/windows/runner/utils.h

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

Crosshair-X-Crack-master/windows/runner/win32_window.cpp

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

Crosshair-X-Crack-master/windows/runner/win32_window.h

Resource

win11-20241007-de

windows11-21h2-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

Crosshair-X-Crack-master/windows/runner/main.cpp
Size

1KB
MD5

7cef56d4a82c1baf9c0ecca1fd5a4d49
SHA1

7315dfc5e209ee31710613dac765527fdc539521
SHA256

e8fd8a549bf05feaa921a3e88aed9b699bee0b969a17e7173205809a04bd9bf9
SHA512

9488c5cd4ad8b8a8c4c290e8592fb98268567a655c5d3b78e1b17e4111f361eff900bb57c44c4df3362b5ab7b29c75cd02e43f2303440eea0ba2e15c2425b687

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Modifies registry class 2 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1537126222-899333903-2037027349-1000_Classes\Local Settings	cmd.exe
Key created	\REGISTRY\USER\S-1-5-21-1537126222-899333903-2037027349-1000_Classes\Local Settings	OpenWith.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1936	OpenWith.exe

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Crosshair-X-Crack-master\windows\runner\main.cpp
1⤵
- Modifies registry class
PID:4584

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:1936

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads