55ac1d35b409793db31e2e7e3e7f25d899762c308f2777f540d596a8f9467cb1

Submit
Reports

Overview

overview

Static

static

Ultimate-D...AT.dll

windows7-x64

Ultimate-D...AT.dll

windows10-2004-x64

Ultimate-D...rp.exe

windows7-x64

Ultimate-D...rp.exe

windows10-2004-x64

Ultimate-D...eR.exe

windows7-x64

Ultimate-D...eR.exe

windows10-2004-x64

Ultimate-D...ub.exe

windows7-x64

Ultimate-D...ub.exe

windows10-2004-x64

Ultimate-D...eg.exe

windows7-x64

Ultimate-D...eg.exe

windows10-2004-x64

Ultimate-D...ib.exe

windows7-x64

Ultimate-D...ib.exe

windows10-2004-x64

Ultimate-D...eR.exe

windows7-x64

Ultimate-D...eR.exe

windows10-2004-x64

Ultimate-D...ub.exe

windows7-x64

Ultimate-D...ub.exe

windows10-2004-x64

Ultimate-D...60.exe

windows7-x64

Ultimate-D...60.exe

windows10-2004-x64

Ultimate-D...m3.exe

windows7-x64

Ultimate-D...m3.exe

windows10-2004-x64

Ultimate-D...42.exe

windows7-x64

Ultimate-D...42.exe

windows10-2004-x64

Ultimate-D...er.exe

windows7-x64

Ultimate-D...er.exe

windows10-2004-x64

Ultimate-D...rp.dll

windows7-x64

Ultimate-D...rp.dll

windows10-2004-x64

Ultimate-D...ox.exe

windows7-x64

Ultimate-D...ox.exe

windows10-2004-x64

Ultimate-D...it.dll

windows7-x64

Ultimate-D...it.dll

windows10-2004-x64

Ultimate-D...er.exe

windows7-x64

Ultimate-D...er.exe

windows10-2004-x64

Analysis

max time kernel
149s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
01-01-2025 04:04

Sharing

Copy URL

Twitter E-mail

Static task

static1

upx modiloader

5 signatures

Behavioral task

behavioral1

Sample

Ultimate-DDoS-Attack-Tools-Pack/BBHH-Ultra DoS/COMCAT.dll

Resource

win7-20241010-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Ultimate-DDoS-Attack-Tools-Pack/BBHH-Ultra DoS/COMCAT.dll

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/CefSharp.exe

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral4

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/CefSharp.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral5

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/DaRKDDoSeR.exe

Resource

win7-20241010-en

discovery

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral6

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/DaRKDDoSeR.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral7

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/Stub.exe

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/Stub.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/ffmpeg.exe

Resource

win7-20240903-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/ffmpeg.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/lib.exe

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Ultimate-DDoS-Attack-Tools-Pack/DaRKDDoSeR+5.6/lib.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/DaRKDDoSeR.exe

Resource

win7-20241010-en

discovery

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral14

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/DaRKDDoSeR.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral15

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/Stub.exe

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral16

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/Stub.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/ldap60.exe

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/ldap60.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/nssdbm3.exe

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral20

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/nssdbm3.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral21

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/vcruntime142.exe

Resource

win7-20241010-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dark DDoser 5.6/vcruntime142.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dos Attacker Alpha 1.1/Black Mamba Dos Attacker.exe

Resource

win7-20241023-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral24

Sample

Ultimate-DDoS-Attack-Tools-Pack/Dos Attacker Alpha 1.1/Black Mamba Dos Attacker.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral25

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/AngleSharp.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/AngleSharp.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/Qt5CoreVBox.exe

Resource

win7-20240903-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/Qt5CoreVBox.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/WPFToolkit.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/WPFToolkit.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/War Flooder.exe

Resource

win7-20240708-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/War Flooder.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

Ultimate-DDoS-Attack-Tools-Pack/War Flooder/Qt5CoreVBox.exe
Size

1.8MB
MD5

26f56121184843056f1d6e6db3f9844b
SHA1

f8d6c767cab3be5e55608cc5abd30a4c383759e9
SHA256

3ad26e1c16b6f49c6136c0c1c02c5943437349a310a6bcc5a8a0f4924a6f4ae4
SHA512

13a0898a6780f474ab4ffe8e46ca0227f03f2c4d26daaf4b61862eb7374a65d887b96a8672f21247e7f3aac4c49cce77521dd1564983b52f8716219aff894b9d
SSDEEP

24576:2m3hIqxIdAtLA0Q9xtPUf0ZOxGI3ffWgR5vuv54Jdhx76g:2gWaW9xthIXWgR5vuv54Jdhx7n

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Qt5CoreVBox.exe

Processes

C:\Users\Admin\AppData\Local\Temp\Ultimate-DDoS-Attack-Tools-Pack\War Flooder\Qt5CoreVBox.exe
"C:\Users\Admin\AppData\Local\Temp\Ultimate-DDoS-Attack-Tools-Pack\War Flooder\Qt5CoreVBox.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:1648

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads