Analysis
-
max time kernel
3s -
max time network
8s -
platform
windows7_x64 -
resource
win7v20201028 -
submitted
05-03-2021 03:24
Static task
static1
Behavioral task
behavioral1
Sample
Patch.exe
Resource
win7v20201028
General
-
Target
Patch.exe
-
Size
474KB
-
MD5
77129d13a7bccc7b9e39094970d3427a
-
SHA1
1da9b6b55d5c2254c6a06c445f6e3152808e2201
-
SHA256
61d765fbf5167d31f1d58f87668a59b9e3f54e8973f00cc307b062acba0dd3dd
-
SHA512
ccdbe01345230320c0037d1602a3c971a93fa450184505ec1d17d01ac97f615640693de61993a86ef21a0366a7bd63b62b5397199fc942b4704d9ee4ee002e71
Malware Config
Signatures
-
Loads dropped DLL 2 IoCs
Processes:
Patch.exepid process 324 Patch.exe 324 Patch.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
\Users\Admin\AppData\Local\Temp\bassmod.dllMD5
e4ec57e8508c5c4040383ebe6d367928
SHA1b22bcce36d9fdeae8ab7a7ecc0b01c8176648d06
SHA2568ad9e47693e292f381da42ddc13724a3063040e51c26f4ca8e1f8e2f1ddd547f
SHA51277d5cf66caf06e192e668fae2b2594e60a498e8e0ccef5b09b9710721a4cdb0c852d00c446fd32c5b5c85e739de2e73cb1f1f6044879fe7d237341bbb6f27822
-
\Users\Admin\AppData\Local\Temp\dup2patcher.dllMD5
f38e47d30b870266d071638e8b4d486d
SHA1ce18794cf26e10c8bd92143cd0777b9fa143ded6
SHA256b382c9994fc0ea1731555d04124599c6165bd02b71c4e0e60ea72fdba204c248
SHA51219ec9af07a3bc5d9fd2768e233bd0fdf416d6e9eb36dd02813b299d7c7569ad82af727c3a1cf96d528ff6d3d0d70e513811f6d0ce21035c8d20f2382be838d2c
-
memory/324-3-0x0000000075301000-0x0000000075303000-memory.dmpFilesize
8KB