Overview

overview

6

Static

static

73f53c50b4...99.exe

windows7-x64

6

73f53c50b4...99.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    41s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2022, 20:24

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    73f53c50b4cf57006ca14fc1320e80c22b656dfc046b88b8e26cf8c80578f499.exe

  • Size

    207KB

  • MD5

    2a90c2a21d07459d8d0d94eafd8fcd60

  • SHA1

    7d39175967d642f160a2da40a717ab8f231dfc07

  • SHA256

    73f53c50b4cf57006ca14fc1320e80c22b656dfc046b88b8e26cf8c80578f499

  • SHA512

    ee2389e9da815b1854ca9a4cb980a1720b3d0729cdd479d46d2f68d343a45868190378cf0b5ea9f053e7837f42618fec89a5c718688a5dd5a613d622707f5d95

  • SSDEEP

    3072:yzm4yNCjrHXPmRD48DB0mlglVI4busVq5mwnhSoOPUNI1v0N0Sucpy:UmYrHXuRU88qglVUSxaNmcpy

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\73f53c50b4cf57006ca14fc1320e80c22b656dfc046b88b8e26cf8c80578f499.exe
    "C:\Users\Admin\AppData\Local\Temp\73f53c50b4cf57006ca14fc1320e80c22b656dfc046b88b8e26cf8c80578f499.exe"
    1⤵
    • Drops file in Windows directory
    PID:1172

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1172-54-0x0000000075571000-0x0000000075573000-memory.dmp

          Filesize

          8KB

          Download

        • memory/1172-55-0x0000000000160000-0x000000000018F000-memory.dmp

          Filesize

          188KB

          Download

        • memory/1172-59-0x0000000000020000-0x0000000000040000-memory.dmp

          Filesize

          128KB

          Download

        • memory/1172-60-0x0000000000020000-0x0000000000040000-memory.dmp

          Filesize

          128KB

          Download