87ab17e508a10e428e8866ae491876252f7f5c6a060ee99bfa34b8c321abeedd | Triage

Analysis

max time kernel
42s
max time network
46s
platform
windows7_x64
resource
win7-20220414-en
submitted
04-07-2022 09:15

Sharing

Report Analysis Logs

General

Target

????-???/.__MACOS__/.__MACOS__/.__MACOS__/.__MACOS1__/360zip - ??.exe
Size

2.1MB
MD5

03d53d7431470e434d44e50050afbb27
SHA1

70da835ffe7719318ab75f440a08b945dc62bc7c
SHA256

4a21acae2bc6f435106ef7d16e8b89045f938c39dcdcbe00fa7b8feb910f076d
SHA512

073b07f67e4ecdbcea834ac60347d1e3e2c6c183c44c877e50be127a834e64a726c4de6874e06c3b86e628878f05aa61b01032008a78b9b0df0b7b9a8d8a41e0

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

360zip - __.exe

pid process

388 360zip - __.exe
388 360zip - __.exe

C:\Users\Admin\AppData\Local\Temp\____-___\.__MACOS__\.__MACOS__\.__MACOS__\.__MACOS1__\360zip - __.exe
"C:\Users\Admin\AppData\Local\Temp\____-___\.__MACOS__\.__MACOS__\.__MACOS__\.__MACOS1__\360zip - __.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:388

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/388-54-0x0000000076C81000-0x0000000076C83000-memory.dmp

Filesize
8KB

Download
memory/388-55-0x0000000077DA0000-0x0000000077DB0000-memory.dmp

Filesize
64KB

Download
memory/388-56-0x0000000077DA0000-0x0000000077DB0000-memory.dmp

Filesize
64KB

Download
memory/388-57-0x0000000077DA0000-0x0000000077DB0000-memory.dmp

Filesize
64KB

Download