Overview

overview

10

Static

static

3

MultiHack v1.7.zip

windows11-21h2-x64

1

MultiHack ...er.exe

windows11-21h2-x64

10

MultiHack ...ME.txt

windows11-21h2-x64

3

MultiHack ...vm.cfg

windows11-21h2-x64

3

MultiHack ...sy.txt

windows11-21h2-x64

3

MultiHack ...ap.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...st.txt

windows11-21h2-x64

3

MultiHack ...ts.txt

windows11-21h2-x64

3

MultiHack ...ds.txt

windows11-21h2-x64

3

MultiHack ...nu.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...ts.txt

windows11-21h2-x64

3

MultiHack ...ut.txt

windows11-21h2-x64

3

MultiHack ...da.txt

windows11-21h2-x64

3

MultiHack ...le.txt

windows11-21h2-x64

3

MultiHack ...ot.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...es.txt

windows11-21h2-x64

3

MultiHack ...fo.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...ts.dsp

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...st.txt

windows11-21h2-x64

3

MultiHack ...re.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...ns.txt

windows11-21h2-x64

3

MultiHack ...ta.txt

windows11-21h2-x64

3

MultiHack ...es.txt

windows11-21h2-x64

3

MultiHack ...er.ini

windows11-21h2-x64

3

MultiHack ...al.dll

windows11-21h2-x64

1

Resubmissions

21/01/2025, 08:24

250121-ka7wnavmhr 10

12/06/2024, 04:32

240612-e6ft6a1cmr 10

Analysis

  • max time kernel
    93s
  • max time network
    97s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    21/01/2025, 08:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MultiHack v1.7/scripts/damagecutout_female.txt

  • Size

    22KB

  • MD5

    7624c8d64a6a5ae9d8bad827a70c637a

  • SHA1

    0b2418bc25521bc56675a056185c14919de780e4

  • SHA256

    3db9c42023c211d8d6609256fd618b725d03b01570f61a8e4d295345d2677db8

  • SHA512

    27ab317f449a40308de3b0e2a55425052d98942e97e3ea1e94ab8ca91eaee41dfa226f02e4166d64a7a67047490ad2a59a8a2da9d64cf0b28a77bef1b99c478e

  • SSDEEP

    192:fN15CX/5snzvfATBxzuE44Z7KrBTF7BHMX:fNvJTATBxz2g0BT3HM

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 1 IoCs
  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\MultiHack v1.7\scripts\damagecutout_female.txt"
    1⤵
    • Modifies registry class
    • Suspicious use of WriteProcessMemory
    PID:4956
    • C:\Windows\system32\NOTEPAD.EXE
      "C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\MultiHack v1.7\scripts\damagecutout_female.txt
      2⤵
        PID:2092

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads