Overview

overview

6

Static

static

ae0a9df9d6...82.exe

windows7-x64

6

ae0a9df9d6...82.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    152s
  • max time network
    181s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/10/2022, 18:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ae0a9df9d62e06302f0648a700c7acfdb0de4a24df6c25a9d1ddb51e2d023d82.exe

  • Size

    383KB

  • MD5

    76d631c71cc52d49c8815a34793693a4

  • SHA1

    1d6527962d72d1995e483c33b691eee092f73985

  • SHA256

    ae0a9df9d62e06302f0648a700c7acfdb0de4a24df6c25a9d1ddb51e2d023d82

  • SHA512

    bbdbf8efb5d77a0dd07c00afe176404ea01d4e438346304729ae12096dbe94cd9270a7d9513388ab14a40e70cb2211614b256b5a285fad57c6b26826f0c130ff

  • SSDEEP

    6144:CIKF0Ft+oWDOvPolw/g51WzKfwnjTt1rwLG93+2sskq2Jqi0L:AF0gS/GYjTt1ryG9upskqti0L

Score
6/10

Malware Config

Signatures

  • Maps connected drives based on registry 3 TTPs 2 IoCs

    Disk information is often read in order to detect sandboxing environments.

  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ae0a9df9d62e06302f0648a700c7acfdb0de4a24df6c25a9d1ddb51e2d023d82.exe
    "C:\Users\Admin\AppData\Local\Temp\ae0a9df9d62e06302f0648a700c7acfdb0de4a24df6c25a9d1ddb51e2d023d82.exe"
    1⤵
    • Maps connected drives based on registry
    • Drops file in Windows directory
    PID:4724

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/4724-132-0x0000000001A60000-0x0000000001A8F000-memory.dmp

          Filesize

          188KB

          Download

        • memory/4724-136-0x0000000001AD0000-0x0000000001AF7000-memory.dmp

          Filesize

          156KB

          Download