Analysis

  • max time kernel
    89s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/12/2024, 20:42

General

  • Target

    res/Lib/aapt.exe

  • Size

    1.6MB

  • MD5

    80f136b0642bbc25c7578e0d24d4673b

  • SHA1

    883596e63700c45ab0d4d880b883f687f65c2457

  • SHA256

    aa18b5646881ff3b8ca9879045a1b4a44e2d5b24fbe14486fc8236789de8237a

  • SHA512

    4a95ac6b8d6252b68ccc842e8dd36056d5b0a773a86d4a8234f39cc2195ccec06fc64954655956447dfc27896720c92f8dfa4a39c2bb568c21fcc588723d86fc

  • SSDEEP

    49152:XPNjtbkZdmFxzKyfMKiTYQ0QQQKXQQQQQQQf0Qw:/NjtQZ8Pf1

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\res\Lib\aapt.exe
    "C:\Users\Admin\AppData\Local\Temp\res\Lib\aapt.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2188

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads