78769e4085312f21cc67e77bfdd136f9a30d34e2d2a5d8870f2ebbeb7c3a8f7e

Submit
Reports

Overview

overview

Static

static

78769e4085...7e.zip

windows7_x64

78769e4085...7e.zip

windows10-2004_x64

malware-an...er.pdf

windows7_x64

malware-an...er.pdf

windows10-2004_x64

malware-an...is.pdf

windows7_x64

malware-an...is.pdf

windows10-2004_x64

malware-an...ypt.py

linux_amd64

malware-an...ypt.py

linux_armhf

malware-an...ypt.py

linux_mips

malware-an...ypt.py

linux_mipsel

malware-an...ons.py

windows7_x64

malware-an...ons.py

windows10-2004_x64

malware-an...is.pdf

windows7_x64

malware-an...is.pdf

windows10-2004_x64

malware-an...tt.ps1

windows7_x64

malware-an...tt.ps1

windows10-2004_x64

malware-an...tt.vbs

windows7_x64

malware-an...tt.vbs

windows10-2004_x64

malware-an...er.ps1

windows7_x64

malware-an...er.ps1

windows10-2004_x64

malware-an...od.ps1

windows7_x64

malware-an...od.ps1

windows10-2004_x64

malware-an...44.exe

windows7_x64

malware-an...44.exe

windows10-2004_x64

malware-an...55.dll

windows7_x64

malware-an...55.dll

windows10-2004_x64

malware-an...xes.py

linux_amd64

malware-an...xes.py

linux_armhf

malware-an...xes.py

linux_mips

malware-an...xes.py

linux_mipsel

malware-an...dra.py

windows7_x64

malware-an...dra.py

windows10-2004_x64

Analysis

max time kernel
45s
max time network
49s
platform
windows7_x64
resource
win7-20220414-en
submitted
21-05-2022 11:11

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

78769e4085312f21cc67e77bfdd136f9a30d34e2d2a5d8870f2ebbeb7c3a8f7e.zip

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

78769e4085312f21cc67e77bfdd136f9a30d34e2d2a5d8870f2ebbeb7c3a8f7e.zip

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

malware-analysis-writeups-master/agent-tesla-loader/agentTeslaLoader.pdf

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

malware-analysis-writeups-master/agent-tesla-loader/agentTeslaLoader.pdf

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral5

Sample

malware-analysis-writeups-master/ava-maria-rat/AvaMariaAnalysis.pdf

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral6

Sample

malware-analysis-writeups-master/ava-maria-rat/AvaMariaAnalysis.pdf

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral7

Sample

malware-analysis-writeups-master/ava-maria-rat/helperScripts/buerBeaconDecrypt.py

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Behavioral task

behavioral8

Sample

malware-analysis-writeups-master/ava-maria-rat/helperScripts/buerBeaconDecrypt.py

Resource

debian9-armhf-en-20211208

linux_armhf

0 signatures

0 seconds

Behavioral task

behavioral9

Sample

malware-analysis-writeups-master/ava-maria-rat/helperScripts/buerBeaconDecrypt.py

Resource

debian9-mipsbe-en-20211208

linux_mips

0 signatures

0 seconds

Behavioral task

behavioral10

Sample

malware-analysis-writeups-master/ava-maria-rat/helperScripts/buerBeaconDecrypt.py

Resource

debian9-mipsel-en-20211208

linux_mipsel

0 signatures

0 seconds

Behavioral task

behavioral11

Sample

malware-analysis-writeups-master/ava-maria-rat/helperScripts/buerCatchBeacons.py

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral12

Sample

malware-analysis-writeups-master/ava-maria-rat/helperScripts/buerCatchBeacons.py

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral13

Sample

malware-analysis-writeups-master/bashar-bachir-chain/bashar-bachir-analysis.pdf

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral14

Sample

malware-analysis-writeups-master/bashar-bachir-chain/bashar-bachir-analysis.pdf

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral15

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/avastt.ps1

Resource

win7-20220414-en

evasion suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral16

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/avastt.ps1

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral17

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/avastt.vbs

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral18

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/avastt.vbs

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral19

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/downloader.ps1

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral20

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/downloader.ps1

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral21

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/nod.ps1

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral22

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/nod.ps1

Resource

win10v2004-20220414-en

njrat evasion suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral23

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/nod_Cli444.exe

Resource

win7-20220414-en

evasion suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral24

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/nod_Cli444.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral25

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/nod_Cli555.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral26

Sample

malware-analysis-writeups-master/bashar-bachir-chain/files/nod_Cli555.dll

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral27

Sample

malware-analysis-writeups-master/bashar-bachir-chain/helperScripts/extractNodExes.py

Resource

ubuntu1804-amd64-en-20211208

linux_amd64

0 signatures

0 seconds

Behavioral task

behavioral28

Sample

malware-analysis-writeups-master/bashar-bachir-chain/helperScripts/extractNodExes.py

Resource

debian9-armhf-en-20211208

linux_armhf

0 signatures

0 seconds

Behavioral task

behavioral29

Sample

malware-analysis-writeups-master/bashar-bachir-chain/helperScripts/extractNodExes.py

Resource

debian9-mipsbe-en-20211208

linux_mips

0 signatures

0 seconds

Behavioral task

behavioral30

Sample

malware-analysis-writeups-master/bashar-bachir-chain/helperScripts/extractNodExes.py

Resource

debian9-mipsel-en-20211208

linux_mipsel

0 signatures

0 seconds

Behavioral task

behavioral31

Sample

malware-analysis-writeups-master/razy-variant/razyVariantDecryptStackStrings_ghidra.py

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral32

Sample

malware-analysis-writeups-master/razy-variant/razyVariantDecryptStackStrings_ghidra.py

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

78769e4085312f21cc67e77bfdd136f9a30d34e2d2a5d8870f2ebbeb7c3a8f7e.zip
Size

4.2MB
MD5

154370225f6d203912178dffa4fc473c
SHA1

2525de74d4d439f33e65fdace52e498187e049ed
SHA256

78769e4085312f21cc67e77bfdd136f9a30d34e2d2a5d8870f2ebbeb7c3a8f7e
SHA512

cc29d21d0b2c3a22dd8b16ecbcb8619526dc82c6e97ccc61261183ec1f8423a0784a192782cf1fb5cd24c1df2f64e2db5fa3b73935f7f5bbc60e23acdc4fad7e

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\78769e4085312f21cc67e77bfdd136f9a30d34e2d2a5d8870f2ebbeb7c3a8f7e.zip
1⤵
PID:1784

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads