Overview

overview

8

Static

static

3

b1naryn1nj...64.exe

windows10-2004-x64

4

$PLUGINSDI...er.bmp

windows10-2004-x64

7

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

Uninstall.exe.nsis

windows10-2004-x64

3

api-docs/_...ic.css

windows10-2004-x64

7

api-docs/_...ly.css

windows10-2004-x64

7

api-docs/_...d.woff

windows10-2004-x64

3

api-docs/_....woff2

windows10-2004-x64

3

api-docs/_...r.woff

windows10-2004-x64

3

api-docs/_....woff2

windows10-2004-x64

3

api-docs/_...nt.eot

windows10-2004-x64

3

api-docs/_...nt.xml

windows10-2004-x64

1

api-docs/_...nt.ttf

windows10-2004-x64

7

plugins/py...si.dll

windows10-2004-x64

1

plugins/py...ng.dll

windows10-2004-x64

1

plugins/py...ed.dll

windows10-2004-x64

1

plugins/py...ue.dll

windows10-2004-x64

1

plugins/py...et.dll

windows10-2004-x64

1

plugins/py...e3.dll

windows10-2004-x64

1

plugins/py...sl.dll

windows10-2004-x64

1

plugins/py...id.dll

windows10-2004-x64

1

plugins/py...fo.dll

windows10-2004-x64

1

plugins/py..._1.dll

windows10-2004-x64

1

plugins/py...-7.dll

windows10-2004-x64

1

plugins/py..._1.dll

windows10-2004-x64

1

plugins/py...at.dll

windows10-2004-x64

1

plugins/py...on.cat

windows10-2004-x64

8

plugins/py...on.exe

windows10-2004-x64

1

plugins/py...n3.dll

windows10-2004-x64

1

plugins/py...0._pth

windows10-2004-x64

3

plugins/py...10.dll

windows10-2004-x64

1

plugins/py...10.zip

windows10-2004-x64

1

Analysis

  • max time kernel
    124s
  • max time network
    274s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-12-2024 22:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    api-docs/_static/css/fonts/fontawesome-webfont.xml

  • Size

    436KB

  • MD5

    acf3dcb7ff752b5296ca23ba2c7c2606

  • SHA1

    b5483b11f8ba213e733b5b8af9927a04fec996f6

  • SHA256

    fc378232f9dad500890aa9e0bdd030a53d2f317d517393a3b91400b4ddce4c7c

  • SHA512

    ec518fb51a29732a7294430841c7acacf1be42652ddd23fd277f3fff110eb84f5a54fa88ff82b1bd461a8c44145847f9c6bfc98a022106661e26237e18048d87

  • SSDEEP

    3072:vpVL2o2UC8IzTEn1hrn1V4eO9ljwnC+az8bK/OfiYbfaCch/eIUYa7HTreiiP3n2:4OZo0Hl5qev

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\api-docs\_static\css\fonts\fontawesome-webfont.xml"
    1⤵
      PID:1868

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1868-0-0x00007FFD4B8D0000-0x00007FFD4B8E0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1868-1-0x00007FFD8B8ED000-0x00007FFD8B8EE000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1868-2-0x00007FFD8B850000-0x00007FFD8BA45000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/1868-3-0x00007FFD8B850000-0x00007FFD8BA45000-memory.dmp

      Filesize

      2.0MB

      Download