Overview

overview

10

Static

static

10

Armageddon...ty.exe

windows7-x64

8

Armageddon...ty.exe

windows10-2004-x64

8

Armageddon...ht.dll

windows7-x64

1

Armageddon...ht.dll

windows10-2004-x64

1

Armageddon...ax.dll

windows10-2004-x64

7

Armageddon...ub.exe

windows7-x64

1

Armageddon...ub.exe

windows10-2004-x64

1

Armageddon...ip.dll

windows7-x64

1

Armageddon...ip.dll

windows10-2004-x64

1

Armageddon...er.exe

windows7-x64

8

Armageddon...er.exe

windows10-2004-x64

8

Armageddon...k1.exe

windows7-x64

1

Armageddon...k1.exe

windows10-2004-x64

1

Armageddon...ub.exe

windows7-x64

1

Armageddon...ub.exe

windows10-2004-x64

1

AttWorm/AT...ed.exe

windows7-x64

8

AttWorm/AT...ed.exe

windows10-2004-x64

8

AttWorm/Jint.dll

windows7-x64

1

AttWorm/Jint.dll

windows10-2004-x64

1

AttWorm/js.exe

windows7-x64

1

AttWorm/js.exe

windows10-2004-x64

3

AttWorm/sk...et.dll

windows7-x64

1

AttWorm/sk...et.dll

windows10-2004-x64

1

AttWorm/sk...ip.dll

windows7-x64

1

AttWorm/sk...ip.dll

windows10-2004-x64

1

AttWorm/sk...er.exe

windows7-x64

8

AttWorm/sk...er.exe

windows10-2004-x64

8

AttWorm/skci/att.exe

windows7-x64

3

AttWorm/skci/att.exe

windows10-2004-x64

3

Aurora Wor...1N.exe

windows7-x64

8

Aurora Wor...1N.exe

windows10-2004-x64

8

Aurora Wor...ip.dll

windows7-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18-01-2025 16:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AttWorm/js.exe

  • Size

    1021KB

  • MD5

    4496891e5fbe826ebf237997230be371

  • SHA1

    66b869076903aec862690593e6f6500e998694f3

  • SHA256

    8cc835e500665935d80c8fed08dbd0abe99ece5e3e0b7b851e5caf1da6a94e83

  • SHA512

    54e73013234e43ba3ed4e246354f2baa9dfd9cbf4778a7b678237ee912d5ad0475ce8a3eec2e468c2edb32faa8b7869e4934b96c082fde4c2a659f4700201004

  • SSDEEP

    24576:bwhbC1W63iSYrxyMzh7fOXvlSzReeSd13Bqvk:2C1ZyWuZS3Bd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\AttWorm\js.exe
    "C:\Users\Admin\AppData\Local\Temp\AttWorm\js.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:4932

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4932-0-0x00000000008F0000-0x00000000009C9000-memory.dmp

    Filesize

    868KB

    Download

  • memory/4932-1-0x00000000008F0000-0x00000000009C9000-memory.dmp

    Filesize

    868KB

    Download