Analysis
-
max time kernel
141s -
max time network
141s -
platform
windows7_x64 -
resource
win7-en-20211104 -
submitted
20-11-2021 15:18
Static task
static1
Behavioral task
behavioral1
Sample
usfive_20211120-122123.exe
Resource
win7-en-20211104
Behavioral task
behavioral2
Sample
usfive_20211120-122123.exe
Resource
win10-en-20211014
General
-
Target
usfive_20211120-122123.exe
-
Size
529KB
-
MD5
3958816e874cc7d5f3fefd540a3e06d5
-
SHA1
0d198aa1041a1030700ceb9ef33c01a2c5b3d441
-
SHA256
818419b0d9f4176a991d120b8206a3d6b34d288acf1ca5dda763142cc74559ee
-
SHA512
07ea36cbc16fbfb479f225b18eb7f9cd02b0fb258edbc9b98a3a9d70bfdefac03f93cf97cbec272f225711d8a986a0a274cc38e2b4b253fdbbbcff4fe26e0427
Malware Config
Extracted
raccoon
1.8.3-hotfix
8b6023dd139bdc34aab99c286fae23d1442b4956
-
url4cnc
http://91.219.236.27/h_electricryptors2
http://5.181.156.92/h_electricryptors2
http://91.219.236.207/h_electricryptors2
http://185.225.19.18/h_electricryptors2
http://91.219.237.227/h_electricryptors2
https://t.me/h_electricryptors2
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1924-55-0x0000000002FDB000-0x000000000302A000-memory.dmpFilesize
316KB
-
memory/1924-56-0x0000000076171000-0x0000000076173000-memory.dmpFilesize
8KB
-
memory/1924-58-0x0000000000400000-0x0000000002B7D000-memory.dmpFilesize
39.5MB
-
memory/1924-57-0x0000000000220000-0x00000000002AF000-memory.dmpFilesize
572KB