Overview

overview

6

Static

static

906b593dff...44.exe

windows7_x64

6

906b593dff...44.exe

windows10_x64

1

Analysis

  • max time kernel
    9s
  • max time network
    15s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    17-11-2020 12:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    906b593dffb2941117c0cd22af097b44.exe

  • Size

    1.4MB

  • MD5

    3b2cc87f778e2f2a56d5c7d6a5198892

  • SHA1

    e872409cc15f21e3b247285d8bae0cde8a388340

  • SHA256

    32f0bb97d0781307f848558482793f882f48efd10a001aa43644cb010a1cf3a6

  • SHA512

    4f9ea498080ba81aed804a1f0d724577af0994da7370d713d9454316c98b72539246a433ffa9a3491319515a5d05ccf61a8fd6a91391792a6c6583422c01e68f

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\906b593dffb2941117c0cd22af097b44.exe
    "C:\Users\Admin\AppData\Local\Temp\906b593dffb2941117c0cd22af097b44.exe"
    1⤵
      PID:1588

    Network

    MITRE ATT&CK Matrix ATT&CK v6

    Initial Access

    Execution

    Persistence

    Privilege Escalation

    Defense Evasion

    Credential Access

    Discovery

    Query Registry

    1
    T1012

    Lateral Movement

    Collection

    Exfiltration

    Command and Control

    Impact

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1588-0-0x0000000010000000-0x000000001008A000-memory.dmp
      Filesize

      552KB

      Download