Overview

overview

10

Static

static

3

JaffaCakes...c2.exe

windows7-x64

3

JaffaCakes...c2.exe

windows10-2004-x64

10

$PLUGINSDI...on.dll

windows7-x64

3

$PLUGINSDI...on.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...es.dll

windows7-x64

3

$PLUGINSDI...es.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...nk.exe

windows7-x64

1

$PLUGINSDI...nk.exe

windows10-2004-x64

1

$PLUGINSDI...cx.exe

windows7-x64

1

$PLUGINSDI...cx.exe

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...er.exe

windows7-x64

1

$PLUGINSDI...er.exe

windows10-2004-x64

3

$PLUGINSDI...71.dll

windows7-x64

3

$PLUGINSDI...71.dll

windows10-2004-x64

3

$PLUGINSDI...71.dll

windows7-x64

3

$PLUGINSDI...71.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDIR/xml.dll

windows7-x64

3

$PLUGINSDIR/xml.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    01/02/2025, 22:27 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/UninstallVista64MCLink.exe

  • Size

    148KB

  • MD5

    3b8a3c6b9d72a1875ec846a2853c867f

  • SHA1

    77681da2a6285384d100147118385887f27cf307

  • SHA256

    6d181f2090b66b085bace16eb8add3713a4a472b1caf93be16eb370a4772892b

  • SHA512

    fba6f61cedb505d14193c47ca656dcd2691b3bf00689ce1759ca389e42efb363f10b765b37dbed76f2276982b3741451198fec2cb9f2b40d416e7a1819571f35

  • SSDEEP

    3072:tccyOj+ZdJ7ec2bJYxd9p2ZF4MG41hwTbZAH2DmpLEC7C:aTn242rfGJAmmKC+

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\UninstallVista64MCLink.exe
    "C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\UninstallVista64MCLink.exe"
    1⤵
      PID:2344

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.