Analysis

  • max time kernel
    152s
  • max time network
    161s
  • platform
    windows7_x64
  • resource
    win7-en-20211208
  • submitted
    21-12-2021 11:54

General

  • Target

    8d413fb17a9fb2722c36b288de4cf2564a25d11bd63673191fc9be22bffc227c.bin.exe

  • Size

    57KB

  • MD5

    bfbde2f75d5dfcf956309091dc25a2c7

  • SHA1

    a0eff047d4468a90ef437e48bbdfc3edf94f79d8

  • SHA256

    8d413fb17a9fb2722c36b288de4cf2564a25d11bd63673191fc9be22bffc227c

  • SHA512

    1fe3d09c57b22958aa3669fc2639c9158252d05000ea0733972c83cd8b90365e776a13076890951d2d5d5b30523ba8a0fa6d908dcf435fba77e9c3ed6aa3ee43

Malware Config

Signatures

  • Windows security bypass 2 TTPs
  • Windows security modification 2 TTPs 7 IoCs
  • Adds Run key to start application 2 TTPs 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8d413fb17a9fb2722c36b288de4cf2564a25d11bd63673191fc9be22bffc227c.bin.exe
    "C:\Users\Admin\AppData\Local\Temp\8d413fb17a9fb2722c36b288de4cf2564a25d11bd63673191fc9be22bffc227c.bin.exe"
    1⤵
    • Windows security modification
    • Adds Run key to start application
    PID:1612

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads