250dd49463bef0ec8fd03d4d1311a001ddccd84b47a01b2b74624f5e9c794b0f

Submit
Reports

Overview

overview

Static

static

Nowy folder.rar

windows10-2004-x64

Nowy folde...eta.db

windows10-2004-x64

Nowy folde...s.json

windows10-2004-x64

Nowy folde...ata.db

windows10-2004-x64

Nowy folde...states

windows10-2004-x64

Nowy folde...update

windows10-2004-x64

Nowy folde...ab.csv

windows10-2004-x64

Nowy folde...ab.txt

windows10-2004-x64

Nowy folde...am.csv

windows10-2004-x64

Nowy folde...am.txt

windows10-2004-x64

Nowy folde...ui.csv

windows10-2004-x64

Nowy folde...ui.txt

windows10-2004-x64

Nowy folde...36.csv

windows10-2004-x64

Nowy folde...36.txt

windows10-2004-x64

Nowy folde...elease

windows10-2004-x64

Nowy folde...ckages

windows10-2004-x64

Nowy folde...elease

windows10-2004-x64

Nowy folde...ckages

windows10-2004-x64

Nowy folde...ckages

windows10-2004-x64

Nowy folde...d.pkla

windows10-2004-x64

Nowy folde...ERSION

windows10-2004-x64

Nowy folde.../1/112

windows10-2004-x64

Nowy folde.../1/113

windows10-2004-x64

Nowy folde...1/1247

windows10-2004-x64

Nowy folde...47_fsm

windows10-2004-x64

Nowy folde...247_vm

windows10-2004-x64

Nowy folde...1/1249

windows10-2004-x64

Nowy folde...49_fsm

windows10-2004-x64

Nowy folde...249_vm

windows10-2004-x64

Nowy folde...1/1255

windows10-2004-x64

Nowy folde...55_fsm

windows10-2004-x64

Nowy folde...255_vm

windows10-2004-x64

Analysis

max time kernel
145s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
31-12-2024 19:54

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Nowy folder.rar

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Nowy folder/apt/emacsen-common/docker/containerd/daemon/io.containerd.metadata.v1.bolt/meta.db

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

Nowy folder/apt/emacsen-common/docker/image/overlay2/repositories.json

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

Nowy folder/apt/emacsen-common/docker/volumes/metadata.db

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

Nowy folder/apt/extended_states

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Nowy folder/apt/ieee-data/.lastupdate

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Nowy folder/apt/ieee-data/iab.csv

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral8

Sample

Nowy folder/apt/ieee-data/iab.txt

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Nowy folder/apt/ieee-data/mam.csv

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral10

Sample

Nowy folder/apt/ieee-data/mam.txt

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Nowy folder/apt/ieee-data/oui.csv

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral12

Sample

Nowy folder/apt/ieee-data/oui.txt

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Nowy folder/apt/ieee-data/oui36.csv

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral14

Sample

Nowy folder/apt/ieee-data/oui36.txt

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Nowy folder/apt/lists/deb.i2p2.no_dists_unstable_inrelease

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral16

Sample

Nowy folder/apt/lists/deb.i2p2.no_dists_unstable_main_binary-amd64_packages

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral17

Sample

Nowy folder/apt/lists/http.kali.org_kali_dists_kali-rolling_inrelease

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

Nowy folder/apt/lists/http.kali.org_kali_dists_kali-rolling_contrib_binary-amd64_packages

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Nowy folder/apt/lists/http.kali.org_kali_dists_kali-rolling_non-free_binary-amd64_packages

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral20

Sample

Nowy folder/apt/polkit-1/localauthority/10-vendor.d/systemd-networkd.pkla

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

Nowy folder/apt/postgresql/13/main/PG_VERSION

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Nowy folder/apt/postgresql/13/main/base/1/112

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Nowy folder/apt/postgresql/13/main/base/1/113

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Nowy folder/apt/postgresql/13/main/base/1/1247

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Nowy folder/apt/postgresql/13/main/base/1/1247_fsm

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Nowy folder/apt/postgresql/13/main/base/1/1247_vm

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Nowy folder/apt/postgresql/13/main/base/1/1249

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Nowy folder/apt/postgresql/13/main/base/1/1249_fsm

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Nowy folder/apt/postgresql/13/main/base/1/1249_vm

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Nowy folder/apt/postgresql/13/main/base/1/1255

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Nowy folder/apt/postgresql/13/main/base/1/1255_fsm

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Nowy folder/apt/postgresql/13/main/base/1/1255_vm

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Nowy folder/apt/emacsen-common/docker/containerd/daemon/io.containerd.metadata.v1.bolt/meta.db
Size

32KB
MD5

1f95a02c47e7c550148eb602af05ee34
SHA1

4eacc23cff307716c0c03195e073f54de216685a
SHA256

303a1f49d7d01b08053e33cfb119906af870aa4f768b37a5aa5f03d481ca720c
SHA512

6d55f0389c9965d4bfde81a197374f486e14c6989d375c67edb94e25f0dfe03a2daceac45956b41c97ee7d8d17062c7bd344c7a0ea4cd8607a3bb1d70d046570
SSDEEP

3:RllMgXllxllKrllRssTcl5llMgXllxllllbKltDQXgl9lZlt8lwltrllElllll0i:+c2XFp7xKl//cmMl//ylsQao

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Windows\system32\cmd.exe
cmd /c "C:\Users\Admin\AppData\Local\Temp\Nowy folder\apt\emacsen-common\docker\containerd\daemon\io.containerd.metadata.v1.bolt\meta.db"
1⤵
PID:1852

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads