79d09a008ac61e606845d0e17b4fd423bb584807a5c6ae8eb6584215c6856e7b | Triage

Submit
Reports

Overview

overview

Static

static

3

ussm_setup.exe

windows10-2004-x64

$APPDATA/L...er.scr

windows10-2004-x64

1

$PLUGINSDI...ol.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...id.dll

windows10-2004-x64

3

$SYSDIR/Li...er.scr

windows10-2004-x64

1

ISCC.exe

windows10-2004-x64

1

ISCmplr.dll

windows10-2004-x64

3

ISPP.dll

windows10-2004-x64

3

LiveScreensaver.exe

windows10-2004-x64

1

LiveScreen...or.exe

windows10-2004-x64

Setup.exe

windows10-2004-x64

1

SetupLdr.exe

windows10-2004-x64

1

islzma.dll

windows10-2004-x64

3

ss.exe

windows10-2004-x64

1

ussm.exe

windows10-2004-x64

Analysis

max time kernel
126s
max time network
128s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
17-06-2024 13:31

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ussm_setup.exe

Resource

win10v2004-20240611-en

banload discovery downloader dropper evasion trojan

windows10-2004-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

$APPDATA/Live Screensaver/$SYSDIR/Ultra Screen Saver.scr

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/AccessControl.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/UserInfo.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/nsis_appid.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$SYSDIR/Live Screensaver.scr

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

ISCC.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

ISCmplr.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

ISPP.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

LiveScreensaver.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

LiveScreensaverCreator.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Setup.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

SetupLdr.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

islzma.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

ss.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

ussm.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

ISCC.exe
Size

854KB
MD5

272761722fad70322be6d2f89839f329
SHA1

c894f5d96e81cf5bd8d03d6586c9bd412f508f27
SHA256

0d02e30a6ad432a50eb86f1ecf330147046e671de340bcb43a170fecbd19bf51
SHA512

ba4e0ce3a511eff43dce2999bc3905580bc19858dd1e73e5cf1b9dc7a7fa6848d11821e1db8d2af968728f2aebb18ce330cad775b640e718201d6c899b8027ef
SSDEEP

24576:u4wpMgurJoZlmqQvT3GTAB2wHmjyst5mTjqqIwp:cMgCo2qQb3GTAB2wUKL

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\ISCC.exe
"C:\Users\Admin\AppData\Local\Temp\ISCC.exe"
1⤵
PID:3304

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=4604,i,16710585221322798697,8586257254049248207,262144 --variations-seed-version --mojo-platform-channel-handle=1300 /prefetch:8
1⤵
PID:2264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3304-0-0x0000000000B60000-0x0000000000D05000-memory.dmp

Filesize
1.6MB

Download
memory/3304-1-0x0000000000400000-0x00000000004DF000-memory.dmp

Filesize
892KB

Download
memory/3304-2-0x0000000000B60000-0x0000000000D05000-memory.dmp

Filesize
1.6MB

Download

© 2018-2024

Terms | Privacy