Resubmissions

18/01/2025, 02:47

250118-c9zekazras 7

18/01/2025, 02:38

250118-c42mqs1lbr 7

Analysis

  • max time kernel
    95s
  • max time network
    99s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/01/2025, 02:38

General

  • Target

    Project Iconic V3/Console GSC/maps/mp/gametypes_zm/_clientids.gsc

  • Size

    191KB

  • MD5

    0dfc7974e61bcbca3d0af2a6601d4e19

  • SHA1

    067c08445849282c0ee74d85437a0ab3b1a088af

  • SHA256

    e340e7904290c3ab40a0d718fbc3827be9a2a36d438a445706fabe7dab33953a

  • SHA512

    69789addfb67ab54724070b4ae9b6a9ff0ed37c76cd352e001993c52458319eb1ef5602042f4e534214e97eb00990f13c5b409079e5b24dc7d60945cacc89693

  • SSDEEP

    3072:LwbnuOVyg4offszu6jJ5W3gWgGlSFxGZjQhg+mu6TAxmUcGN50wQ563cTpnVu+kf:EbXVyg4ok15WXZj+IAxmUcGN50wJv+kf

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Project Iconic V3\Console GSC\maps\mp\gametypes_zm\_clientids.gsc"
    1⤵
    • Modifies registry class
    PID:2524
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1324

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads