79d09a008ac61e606845d0e17b4fd423bb584807a5c6ae8eb6584215c6856e7b | Triage

Submit
Reports

Overview

overview

Static

static

3

ussm_setup.exe

windows10-2004-x64

$APPDATA/L...er.scr

windows10-2004-x64

1

$PLUGINSDI...ol.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...id.dll

windows10-2004-x64

3

$SYSDIR/Li...er.scr

windows10-2004-x64

1

ISCC.exe

windows10-2004-x64

1

ISCmplr.dll

windows10-2004-x64

3

ISPP.dll

windows10-2004-x64

3

LiveScreensaver.exe

windows10-2004-x64

1

LiveScreen...or.exe

windows10-2004-x64

Setup.exe

windows10-2004-x64

1

SetupLdr.exe

windows10-2004-x64

1

islzma.dll

windows10-2004-x64

3

ss.exe

windows10-2004-x64

1

ussm.exe

windows10-2004-x64

Analysis

max time kernel
92s
max time network
94s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
17-06-2024 13:31

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ussm_setup.exe

Resource

win10v2004-20240611-en

banload discovery downloader dropper evasion trojan

windows10-2004-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

$APPDATA/Live Screensaver/$SYSDIR/Ultra Screen Saver.scr

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/AccessControl.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/UserInfo.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/nsis_appid.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$SYSDIR/Live Screensaver.scr

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

ISCC.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

ISCmplr.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

ISPP.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

LiveScreensaver.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

LiveScreensaverCreator.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Setup.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

SetupLdr.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

islzma.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

ss.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

ussm.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

SetupLdr.exe
Size

813KB
MD5

410e3415c9ff3e83d68bdb4a3b513903
SHA1

c86daeb8822baf3a4889bddbc6aeca0ca25a320c
SHA256

86154d725c21660f220e957eb6dcaf73ca609eef486dcdce6d5d7c286abd03d5
SHA512

fcc2f69c1703b0fd0aa07883246909860ecfc6077b8a78a4f0260a5979cd8d5eb56bcbb2bdf734f81ff3012a34cd822f9d380088620784b24b308dfa90a33d22
SSDEEP

6144:eS005y5u11vsH0Db0cHEdzopG5rgfLNWI0bggvVmHuUiVk2yZ/h2kfYYq4qNrCs6:eS8cmUDowAy0bgTziwE3UCuaWR0Q

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\SetupLdr.exe
"C:\Users\Admin\AppData\Local\Temp\SetupLdr.exe"
1⤵
PID:2456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2456-0-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download
memory/2456-2-0x0000000000401000-0x00000000004B7000-memory.dmp

Filesize
728KB

Download
memory/2456-3-0x0000000000400000-0x00000000004D8000-memory.dmp

Filesize
864KB

Download

© 2018-2024

Terms | Privacy