Overview

overview

6

Static

static

0356925420...49.exe

windows7-x64

6

0356925420...49.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    35s
  • max time network
    53s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    01/10/2022, 18:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    035692542055913b8c46f99f077b21647e50411e987cbf67250dd5d6ab762849.exe

  • Size

    188KB

  • MD5

    6e709b3b51f76b9e5cf760c710ab6d00

  • SHA1

    603cb70ad2d4451f2cf19319bb0d175c6d6c4c32

  • SHA256

    035692542055913b8c46f99f077b21647e50411e987cbf67250dd5d6ab762849

  • SHA512

    e719fd1ad0c6298f0d0bbc7726e86f17c869ed7293e8810e6c0c6340aedabd1e0cb2f43b02447ae57f1958d2d3fa49205dc2fc20572214ba769fef5586c048cc

  • SSDEEP

    3072:pVSiD8tTZDQ0Dp1chJB4ncr0LsVUAyb0TvN+8fT2bqszGPcs3myNaW:rSiAdZDXihJCaOAO0TN+8fKuPrl

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\035692542055913b8c46f99f077b21647e50411e987cbf67250dd5d6ab762849.exe
    "C:\Users\Admin\AppData\Local\Temp\035692542055913b8c46f99f077b21647e50411e987cbf67250dd5d6ab762849.exe"
    1⤵
    • Drops file in Windows directory
    PID:1932

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1932-54-0x0000000075F51000-0x0000000075F53000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1932-55-0x00000000000A0000-0x00000000000CF000-memory.dmp

    Filesize

    188KB

    Download

  • memory/1932-59-0x0000000000020000-0x0000000000040000-memory.dmp

    Filesize

    128KB

    Download

  • memory/1932-60-0x0000000000020000-0x0000000000040000-memory.dmp

    Filesize

    128KB

    Download