Overview

overview

10

Static

static

10

a100ce0a67...25.exe

windows7_x64

6

a100ce0a67...25.exe

windows10-2004_x64

1

Analysis

  • max time kernel
    4294183s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20220311-en
  • submitted
    12-03-2022 03:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a100ce0a67c5890bcc38d2b6e30f9164dfe266126ec40a2fd7eb8e941dc7d025.exe

  • Size

    552KB

  • MD5

    713e8df6bd82d3260543d0d969905d5b

  • SHA1

    e0fb35f6f3672d51140dc240ae23e627a4043a0f

  • SHA256

    a100ce0a67c5890bcc38d2b6e30f9164dfe266126ec40a2fd7eb8e941dc7d025

  • SHA512

    47e75a0604ec838992b9e9a552c7727c6902a8b0627b9f254f2ca9ae1fa70f5762895e94e32b40b3a2a1dfe0246043dd4ad4cb983a0bac7546275189c5375953

Score
6/10

Malware Config

Signatures

  • Looks up external IP address via web service 1 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

Processes

  • C:\Users\Admin\AppData\Local\Temp\a100ce0a67c5890bcc38d2b6e30f9164dfe266126ec40a2fd7eb8e941dc7d025.exe
    "C:\Users\Admin\AppData\Local\Temp\a100ce0a67c5890bcc38d2b6e30f9164dfe266126ec40a2fd7eb8e941dc7d025.exe"
    1⤵
      PID:1192

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1192-54-0x0000000075AD1000-0x0000000075AD3000-memory.dmp

      Filesize

      8KB

      Download

    • memory/1192-55-0x00000000743D0000-0x000000007497B000-memory.dmp

      Filesize

      5.7MB

      Download

    • memory/1192-56-0x0000000001DB0000-0x0000000001DB1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1192-57-0x00000000743D0000-0x000000007497B000-memory.dmp

      Filesize

      5.7MB

      Download