Overview

overview

7

Static

static

0d5a25588d...13.exe

windows7-x64

7

0d5a25588d...13.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    1s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    28/10/2022, 22:23

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0d5a25588d2e39b98a02d616f35ae98782f9f7775a76e4f5a304b743102d5413.exe

  • Size

    316KB

  • MD5

    0aa9a75b30c05935bbaaa308cd146190

  • SHA1

    ab79105c8715b647412d39f54520e862bb07278a

  • SHA256

    0d5a25588d2e39b98a02d616f35ae98782f9f7775a76e4f5a304b743102d5413

  • SHA512

    6d892115f07746c632379055eb48b804f76defd5701eb4b74a0795bd36fd3611fa8c3fcc173e01b0584d302057efb25ec06ecc9c049fba8bd48560243fd56c5a

  • SSDEEP

    6144:KribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xZ:Kr7kuveY33FJUo7MDkA6Q

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0d5a25588d2e39b98a02d616f35ae98782f9f7775a76e4f5a304b743102d5413.exe
    "C:\Users\Admin\AppData\Local\Temp\0d5a25588d2e39b98a02d616f35ae98782f9f7775a76e4f5a304b743102d5413.exe"
    1⤵
    • Loads dropped DLL
    PID:1980

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\Tsu57860B5F.dll
          Filesize

          45KB

          MD5

          582152d6eb34dcf5ac5b7638185db0de

          SHA1

          a7b261cf9a62743df879f4a883ec89e2aa465e09

          SHA256

          92edf21fd3e840f1dd753c3d6ce4cea3a1d05d1ef1e7ce669be121110f619021

          SHA512

          5e62b4a90b86bd5bca0522c49765e37cafa34a943b9906a4a4ca11c1c06c99feee26736c8f5a34724cc9ed90f1072edec99e8c226b1fd5e48eb6ca7808b13cd1

          Download Submit

        • \Users\Admin\AppData\Local\Temp\{FFA5A772-CAEB-4791-A57A-82C924468584}\Custom.dll
          Filesize

          31KB

          MD5

          2d793fd17ee723641c240c6e278c73ec

          SHA1

          3290d53a1d31590d6f88ddc1c722baa6ab1c41ee

          SHA256

          039d8215ac36d70169e5e6e772e1f37f830b5f4e5efb3e1943f48594d58f8956

          SHA512

          5dc8d072ed2bd2c3f72bddc0ca0bd0d81183007710ec2a295580127aa2d20d69224f5f0a46f37a9f525d3b7b78b918fefc81700253af32fd34730c385607aabc

          Download Submit

        • \Users\Admin\AppData\Local\Temp\{FFA5A772-CAEB-4791-A57A-82C924468584}\_Setup.dll
          Filesize

          29KB

          MD5

          82d95e2d6c66a248c4eb76f28a7fe363

          SHA1

          0fe978e74ac1671486c809f2d4cd10a8e8d639f6

          SHA256

          6b647f13fd533dab7929f51948d3e582cb5c9868758e6ece450930084f73bcfd

          SHA512

          41baeec91313a01a5b32e5d10724a624b1aefa953ecf7b9be321b2119c8e693e636e99c6f14e5263c923f90788b7d1cff3fddc9dd82af9576957fd2760db18d0

          Download Submit

        • memory/1980-55-0x0000000076031000-0x0000000076033000-memory.dmp

          Filesize

          8KB

          Download