Analysis
-
max time kernel
150s -
max time network
169s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
20-10-2022 08:50
Behavioral task
behavioral1
Sample
5344d63a7623e541cf23ba2d8ac234fede533d527dd818bda25465d67a699d5d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5344d63a7623e541cf23ba2d8ac234fede533d527dd818bda25465d67a699d5d.exe
Resource
win10v2004-20220812-en
General
-
Target
5344d63a7623e541cf23ba2d8ac234fede533d527dd818bda25465d67a699d5d.exe
-
Size
379KB
-
MD5
735a209643e341c6968cc69cc144b3a0
-
SHA1
aad0998d8e5defd9b94e0f67243af3e8c17c7623
-
SHA256
5344d63a7623e541cf23ba2d8ac234fede533d527dd818bda25465d67a699d5d
-
SHA512
d0b2f4e38e85b1c1f56bd2d3b8bee5c4f28526f916912c88847d6bc92f20ae37d12eea4784d24ec8976c6d0ed7b194a54a593e3e45fb48e6d7904b5d0029bcad
-
SSDEEP
6144:k1xJF8SQBw/wQJQQQKdQKtrG5fLDq7VsJilGCdQ5wGootji1SfF6dwVhUvKWItfm:k1v2LBw/wQJQQQKdQKt2fCVsJilGMQ5Y
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
Processes:
5344d63a7623e541cf23ba2d8ac234fede533d527dd818bda25465d67a699d5d.exepid process 1448 5344d63a7623e541cf23ba2d8ac234fede533d527dd818bda25465d67a699d5d.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Local\Temp\0186aa06-89f6-4803-b9a0-90ba314d552a\AgileDotNetRT.dllFilesize
121KB
MD5b00823b0095b4bfaa0c0044e8c9759a5
SHA110dfacf94196d3f4a4cf09b9a502eb0c4a1d7e6e
SHA256fbe82a7b20535f59650af688d4068038d9dca9a5d9bc3083645f8ee87a54f076
SHA51269301f1d7077e7cb1cc208a143383a8bb0a4d3a75fe88d0a5df180c370d13d5368116cf13b9bbf9e26a84a83cc4328f5f151582c75dd47385f2f9a8966de4dd8
-
memory/1448-132-0x0000000074640000-0x0000000074BF1000-memory.dmpFilesize
5.7MB
-
memory/1448-134-0x0000000073360000-0x00000000733BB000-memory.dmpFilesize
364KB
-
memory/1448-135-0x0000000072B40000-0x0000000072B74000-memory.dmpFilesize
208KB
-
memory/1448-136-0x0000000074640000-0x0000000074BF1000-memory.dmpFilesize
5.7MB