Overview

overview

10

Static

static

3

HTCTL32.dll

windows7-x64

3

HTCTL32.dll

windows10-2004-x64

3

PCICHEK.dll

windows7-x64

3

PCICHEK.dll

windows10-2004-x64

3

PCICL32.dll

windows7-x64

3

PCICL32.dll

windows10-2004-x64

3

TCCTL32.dll

windows7-x64

3

TCCTL32.dll

windows10-2004-x64

3

cksini (2).exe

windows7-x64

3

cksini (2).exe

windows10-2004-x64

3

client32.exe

windows7-x64

10

client32.exe

windows10-2004-x64

10

false/vp8encoder.dll

windows7-x64

3

false/vp8encoder.dll

windows10-2004-x64

3

false/webmmux.dll

windows7-x64

3

false/webmmux.dll

windows10-2004-x64

3

msvcr100.dll

windows7-x64

3

msvcr100.dll

windows10-2004-x64

3

pcicapi.dll

windows7-x64

3

pcicapi.dll

windows10-2004-x64

3

remcmdstub.exe

windows7-x64

3

remcmdstub.exe

windows10-2004-x64

3

true/api-m...-0.dll

windows10-2004-x64

3

true/vp8decoder.dll

windows7-x64

3

true/vp8decoder.dll

windows10-2004-x64

3

true/vp8encoder.dll

windows7-x64

3

true/vp8encoder.dll

windows10-2004-x64

3

true/webmmux.dll

windows7-x64

3

true/webmmux.dll

windows10-2004-x64

3

webmmux.dll

windows7-x64

3

webmmux.dll

windows10-2004-x64

3

webmvorbisencoder.dll

windows7-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    142s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-01-2025 03:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cksini (2).exe

  • Size

    85KB

  • MD5

    953896600dfb86750506706f1599d415

  • SHA1

    80204dd5ff71618de5e09d8090738672eaa966b0

  • SHA256

    f37f6c1c401ebaf3f2879f62a524e1d5bb302e0ef5ae867ccfe7fafc7464f47d

  • SHA512

    06f702a2b09afa24356d2d1fa9331f6351e8ac58394d02edaa6a0673fb25dd02ab790bc8b2b157bdd10e631df59fbbfd5691543e522f92be9922fb95e3140085

  • SSDEEP

    1536:ZWd+OSckkrNv/FaXdIJQG8Jf6ClkCFyGjNZgXorEzMuHl/B3:YkNckAiJf6CimNZgXorEzMuHl/B3

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\cksini (2).exe
    "C:\Users\Admin\AppData\Local\Temp\cksini (2).exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:5064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads