Overview

overview

6

Static

static

868d28c757...68.exe

windows7-x64

6

868d28c757...68.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    41s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    01-10-2022 18:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    868d28c757810029909d976c88e1ee121bfa9643ad251b9111b8eaa56dcfcc68.exe

  • Size

    295KB

  • MD5

    49ece81f90a5ddccde7e71cd318f74e1

  • SHA1

    487dedc0245cbc385030b2df74862186324a9f93

  • SHA256

    868d28c757810029909d976c88e1ee121bfa9643ad251b9111b8eaa56dcfcc68

  • SHA512

    f9ea481bbb67b18a7d0cb97e163e984ed38587c51385a5b2b6d36db3ffa7b5891b53d3d8a7726ebd77da7df1d2a55fccb0c6d711ca498af621fc47cdbdc18edc

  • SSDEEP

    6144:wkU6kTl++0W90TMT6yyWPr4cCWFUvr7h5sLYf1Sp7tZgc3:PU6Wo290TGr4Fvh56YfIxDgc3

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\868d28c757810029909d976c88e1ee121bfa9643ad251b9111b8eaa56dcfcc68.exe
    "C:\Users\Admin\AppData\Local\Temp\868d28c757810029909d976c88e1ee121bfa9643ad251b9111b8eaa56dcfcc68.exe"
    1⤵
    • Drops file in Windows directory
    PID:1184

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1184-54-0x0000000074BB1000-0x0000000074BB3000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1184-55-0x00000000000C0000-0x00000000000EF000-memory.dmp

    Filesize

    188KB

    Download