Overview

overview

9

Static

static

9

360Download.exe

windows7_x64

5

360Download.exe

windows10_x64

5

Analysis

  • max time kernel
    110s
  • max time network
    135s
  • platform
    windows10_x64
  • resource
    win10v20210408
  • submitted
    29-04-2021 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    360Download.exe

  • Size

    485KB

  • MD5

    78e0903dd7bf20630b13d1d76801b545

  • SHA1

    108ab8999f76f2b10c3272986235bd88b9b74c60

  • SHA256

    ecb843e273a1466cc30236163514fc5ec75031651448b30ba2f163578c62bb5b

  • SHA512

    9d165f62f97caa196014fc1abddfd52e2149948a33f9125af59684e5bf722af1e5e8343df09294d08d8468f34817c9bc87a1e4a4642955bcc86471e6e44a189d

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtCreateThreadExHideFromDebugger 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\360Download.exe
    "C:\Users\Admin\AppData\Local\Temp\360Download.exe"
    1⤵
    • Suspicious use of NtCreateThreadExHideFromDebugger
    PID:656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/656-114-0x0000000000400000-0x000000000047D000-memory.dmp
    Filesize

    500KB

    Download
  • memory/656-115-0x00000000001A0000-0x00000000001FB000-memory.dmp
    Filesize

    364KB

    Download
  • memory/656-116-0x0000000001FC0000-0x0000000002000000-memory.dmp
    Filesize

    256KB

    Download