Overview
overview
10Static
static
3New folder.zip
windows11-21h2-x64
10New folder...ng.exe
windows11-21h2-x64
10New folder...ne.reg
windows11-21h2-x64
1New folder...CK.txt
windows11-21h2-x64
3New folder...rr.xml
windows11-21h2-x64
1New folder...il.sys
windows11-21h2-x64
3New folder...le.dll
windows11-21h2-x64
1New folder...ss.dll
windows11-21h2-x64
1New folder...ng.exe
windows11-21h2-x64
1New folder...xe.xml
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...ig.ini
windows11-21h2-x64
3New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1New folder...es.dll
windows11-21h2-x64
1Analysis
-
max time kernel
149s -
max time network
152s -
platform
windows11-21h2_x64 -
resource
win11-20241007-en -
resource tags
arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system -
submitted
14/01/2025, 15:35
Static task
static1
Behavioral task
behavioral1
Sample
New folder.zip
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral2
Sample
New folder/lossless scaling/Lossless Scaling.exe
Resource
win11-20241023-en
windows11-21h2-x64
Behavioral task
behavioral3
Sample
New folder/lossless scaling/Registration ('Crack')/Double-click, confirm to merge, done.reg
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral4
Sample
New folder/lossless scaling/__HOW TO CRACK.txt
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral5
Sample
New folder/lossless scaling/language/diagerr.xml
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral6
Sample
New folder/lossless scaling/language/en-US/hiberfil.sys
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral7
Sample
New folder/lossless scaling/language/en-US/pagefile.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral8
Sample
New folder/lossless scaling/language/uk-UA/Lossless.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral9
Sample
New folder/lossless scaling/language/uk-UA/LosslessScaling.exe
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral10
Sample
New folder/lossless scaling/language/uk-UA/LosslessScaling.exe.xml
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral11
Sample
New folder/lossless scaling/language/uk-UA/ar/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral12
Sample
New folder/lossless scaling/language/uk-UA/bg/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral13
Sample
New folder/lossless scaling/language/uk-UA/config.ini
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral14
Sample
New folder/lossless scaling/language/uk-UA/cs/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral15
Sample
New folder/lossless scaling/language/uk-UA/de/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral16
Sample
New folder/lossless scaling/language/uk-UA/es-ES/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral17
Sample
New folder/lossless scaling/language/uk-UA/fa/LosslessScaling.resources.dll
Resource
win11-20241023-en
windows11-21h2-x64
Behavioral task
behavioral18
Sample
New folder/lossless scaling/language/uk-UA/fr/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral19
Sample
New folder/lossless scaling/language/uk-UA/he/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral20
Sample
New folder/lossless scaling/language/uk-UA/hr/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral21
Sample
New folder/lossless scaling/language/uk-UA/id/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral22
Sample
New folder/lossless scaling/language/uk-UA/it/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral23
Sample
New folder/lossless scaling/language/uk-UA/ja/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral24
Sample
New folder/lossless scaling/language/uk-UA/ko/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral25
Sample
New folder/lossless scaling/language/uk-UA/lt/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral26
Sample
New folder/lossless scaling/language/uk-UA/pl/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral27
Sample
New folder/lossless scaling/language/uk-UA/pt-BR/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral28
Sample
New folder/lossless scaling/language/uk-UA/pt-PT/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral29
Sample
New folder/lossless scaling/language/uk-UA/ro/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral30
Sample
New folder/lossless scaling/language/uk-UA/sr-Latn/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
Behavioral task
behavioral31
Sample
New folder/lossless scaling/language/uk-UA/tr/LosslessScaling.resources.dll
Resource
win11-20241023-en
windows11-21h2-x64
Behavioral task
behavioral32
Sample
New folder/lossless scaling/language/uk-UA/uk/LosslessScaling.resources.dll
Resource
win11-20241007-en
windows11-21h2-x64
General
-
Target
New folder/lossless scaling/language/uk-UA/LosslessScaling.exe
-
Size
953KB
-
MD5
2c98d33096e97094cbbbd19f27f40883
-
SHA1
7e28af9d119d2658f962e3b28140c6081be1612b
-
SHA256
010ac1120a88a772e87d9e9018aa5db034a9bac9399803d4a7c4db3c47a71df6
-
SHA512
f9070ad6b2e3295fdde13aa8d7486147a7f9a675a924ad3bf117479baf5b573cf92650199e58378dd8345a28ab890bbd5021d374030c24836bfa65bb037dddc7
-
SSDEEP
12288:ApDJEDS4MCLSyf6mOuGyW38yHJc+CKtOaO5Z7WhawnzE4ZbuRCwmhI2J+0sDgwl1:btMCLPf1Oi32OvzGo4ZiRlT/sN0
Malware Config
Signatures
-
Modifies Control Panel 1 IoCs
description ioc Process Key created \REGISTRY\USER\S-1-5-21-3973800497-2716210218-310192997-1000\Control Panel\Colors LosslessScaling.exe -
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe 4920 LosslessScaling.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 4920 LosslessScaling.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 4920 LosslessScaling.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\New folder\lossless scaling\language\uk-UA\LosslessScaling.exe"C:\Users\Admin\AppData\Local\Temp\New folder\lossless scaling\language\uk-UA\LosslessScaling.exe"1⤵
- Modifies Control Panel
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
PID:4920
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
2KB
MD545fed0a3bcbc889ca99d0c5943210e7e
SHA1602584366a413cb9ae459b6c3231190cd787241e
SHA2569812fe8104a86e693d6baa02a4cdb56ea9a4aedb500b050346eb5ec6bda8dd09
SHA512d0728fcce9484daedb2c9552ee2a818f7cccbeb1e9bca24a1c4fc1ca6e8c181c46cdc89670bfee3d6ad219ea6f69750bd03f776af4f9e4667872c66c11dbd255