Analysis

  • max time kernel
    44s
  • max time network
    77s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    03-10-2022 23:35

General

  • Target

    8c4901ddeff78c3d25c9354d94c5a75be3e6553750cb6caf3adfe29a230e51ea.exe

  • Size

    187KB

  • MD5

    22baf44f93fcad150e8ffe091dee4570

  • SHA1

    963e623edb8ea60500802e36a4ac7330ed42f335

  • SHA256

    8c4901ddeff78c3d25c9354d94c5a75be3e6553750cb6caf3adfe29a230e51ea

  • SHA512

    82bb5e40a972b27def925a8c3b65bc52fae61cc27847113aa71b68d0039e4bbb3de45a784681e0f79af651fa45128a7cb932fcf35e3b32498059867548909090

  • SSDEEP

    3072:QxVtFLAqS0JhSMzkhOR2JOUwBtI7c5OQXEs+LQ1kz0b:QDPkaWM5CoXBo0b

Score
6/10

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8c4901ddeff78c3d25c9354d94c5a75be3e6553750cb6caf3adfe29a230e51ea.exe
    "C:\Users\Admin\AppData\Local\Temp\8c4901ddeff78c3d25c9354d94c5a75be3e6553750cb6caf3adfe29a230e51ea.exe"
    1⤵
    • Drops file in Windows directory
    PID:1960

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1960-54-0x0000000075A11000-0x0000000075A13000-memory.dmp

    Filesize

    8KB

  • memory/1960-55-0x0000000000170000-0x000000000019F000-memory.dmp

    Filesize

    188KB

  • memory/1960-59-0x0000000000020000-0x0000000000040000-memory.dmp

    Filesize

    128KB

  • memory/1960-60-0x0000000000020000-0x0000000000040000-memory.dmp

    Filesize

    128KB