Overview

overview

10

Static

static

10

Rewind.Lau....7.exe

windows10-ltsc 2021-x64

7

$PLUGINSDI...ls.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...em.dll

windows10-ltsc 2021-x64

3

$PLUGINSDIR/UAC.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...ll.dll

windows10-ltsc 2021-x64

3

$PLUGINSDIR/app-64.7z

windows10-ltsc 2021-x64

1

LICENSE.electron.txt

windows10-ltsc 2021-x64

1

chrome_100...nt.pak

windows10-ltsc 2021-x64

3

chrome_200...nt.pak

windows10-ltsc 2021-x64

3

icudtl.dat

windows10-ltsc 2021-x64

3

locales/af.pak

windows10-ltsc 2021-x64

3

locales/am.pak

windows10-ltsc 2021-x64

3

locales/ar.pak

windows10-ltsc 2021-x64

3

locales/bg.pak

windows10-ltsc 2021-x64

3

locales/bn.pak

windows10-ltsc 2021-x64

3

locales/ca.pak

windows10-ltsc 2021-x64

3

resources/elevate.exe

windows10-ltsc 2021-x64

3

vk_swiftshader.dll

windows10-ltsc 2021-x64

1

vulkan-1.dll

windows10-ltsc 2021-x64

1

$PLUGINSDI...rd.bmp

windows10-ltsc 2021-x64

7

$PLUGINSDI...gs.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...ec.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...ss.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...7z.dll

windows10-ltsc 2021-x64

3

$R0/Uninst...er.exe

windows10-ltsc 2021-x64

7

$PLUGINSDI...ls.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...em.dll

windows10-ltsc 2021-x64

3

$PLUGINSDIR/UAC.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...ll.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...gs.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...ec.dll

windows10-ltsc 2021-x64

3

$PLUGINSDI...ss.dll

windows10-ltsc 2021-x64

3

Analysis

  • max time kernel
    107s
  • max time network
    142s
  • platform
    windows10-ltsc 2021_x64
  • resource
    win10ltsc2021-20241211-en
  • resource tags

    arch:x64arch:x86image:win10ltsc2021-20241211-enlocale:en-usos:windows10-ltsc 2021-x64system
  • submitted
    21-12-2024 17:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    chrome_200_percent.pak

  • Size

    222KB

  • MD5

    3969308aae1dc1c2105bbd25901bcd01

  • SHA1

    a32f3c8341944da75e3eed5ef30602a98ec75b48

  • SHA256

    20c93f2cfd69f3249cdfd46f317b37a9432ecc0de73323d24ecf65ce0f3c1bb6

  • SHA512

    f81ed1890b46f7d9f6096b9ef5daab5b21788952efb5c4dcd6b8fd43e4673a91607c748f31434c84a180d943928d83928037058493e7e9b48c3de1fc8025df7f

  • SSDEEP

    6144:HDQYajN6svyABnI86uKkxugx5GMRejnbdZnVE6YoppO4:sfjN6svyABTKkxa6edhVELoXO4

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\chrome_200_percent.pak
    1⤵
    • Modifies registry class
    PID:2896
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1660

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads