bcf5645f868e8feb90a3b4822b2d75e28458be4635dded0e7c9372f88ffbad61 | Triage

Submit
Reports

Overview

overview

Static

static

f75e4b518f...1e.exe

windows7_x64

6

f75e4b518f...1e.exe

windows10_x64

6

Analysis

max time kernel
150s
max time network
200s
platform
windows7_x64
resource
win7v20210410
submitted
05-08-2021 18:47

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f75e4b518fcdb1bac95706a63a0d6b8d57302f222fd93faae47b2ea4e146c51e.exe

Resource

win7v20210410

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f75e4b518fcdb1bac95706a63a0d6b8d57302f222fd93faae47b2ea4e146c51e.exe

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

f75e4b518fcdb1bac95706a63a0d6b8d57302f222fd93faae47b2ea4e146c51e.exe
Size

967KB
MD5

03bd12f7ca699f42ff455a222de8bded
SHA1

e00b8686464fc5787deec24e838bfff2a49870ea
SHA256

f75e4b518fcdb1bac95706a63a0d6b8d57302f222fd93faae47b2ea4e146c51e
SHA512

87590932100ac86283dae32464b84e361e7e29adbe33b343a0e5afb40373bdda7ed42bd60b20b159607160b96e02dc6df4b858b12390e41ddb89d176dacdbd80

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102

Processes

C:\Users\Admin\AppData\Local\Temp\f75e4b518fcdb1bac95706a63a0d6b8d57302f222fd93faae47b2ea4e146c51e.exe
"C:\Users\Admin\AppData\Local\Temp\f75e4b518fcdb1bac95706a63a0d6b8d57302f222fd93faae47b2ea4e146c51e.exe"
1⤵
PID:1056

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1056-59-0x00000000752B1000-0x00000000752B3000-memory.dmp

Filesize
8KB

Download

© 2018-2024

Terms | Privacy