Overview

overview

7

Static

static

d0dfa81828...01.exe

windows7-x64

7

d0dfa81828...01.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    2s
  • max time network
    29s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/10/2022, 05:45

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    d0dfa81828b188fbaf72ebda155dc32d5aa9d6ef392fde5d39d9bcd0dffaba01.exe

  • Size

    325KB

  • MD5

    0098dbd446650d90e74d17f96d9df5df

  • SHA1

    dd5dfe395e22a4ed3afd1ae0ff25beba7ae79e5f

  • SHA256

    d0dfa81828b188fbaf72ebda155dc32d5aa9d6ef392fde5d39d9bcd0dffaba01

  • SHA512

    1b57cf6b1e845ae6b794fb11facf5678125db3a5e27a5d6972c84564d1b94c674bdb417c353586ebb4605251f5feb2a7fc5e3d7fbfd2c1752edc0762bb344c84

  • SSDEEP

    6144:0r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oIg:0r1B3u6/eIo4ArVUBQCCYOqmO5oIg

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d0dfa81828b188fbaf72ebda155dc32d5aa9d6ef392fde5d39d9bcd0dffaba01.exe
    "C:\Users\Admin\AppData\Local\Temp\d0dfa81828b188fbaf72ebda155dc32d5aa9d6ef392fde5d39d9bcd0dffaba01.exe"
    1⤵
    • Loads dropped DLL
    PID:2544

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\Tsu110083AA.dll
          Filesize

          15KB

          MD5

          ad5966d7de41659d1f759eee46de6f3b

          SHA1

          25960a9d2b2d785c2b49eaab9f7799c0822b0b25

          SHA256

          ff58f8f3b757db7f555e8a59ace3b5a0446ec66578f1d5d3bb876f423eaafa8e

          SHA512

          1eca073dd688878e8a9d4f6aa810859796a85d7e65e8e754e51dcf8828dfb2c2dc5d43c8f912860419e6958801d499f8d9fdd60219f58a051f4896079887d1b5

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\{8C352233-8230-4C9F-AE74-CA1257D600C5}\Custom.dll
          Filesize

          16KB

          MD5

          04cb8b5c46e2c6ef28bfcb2b3c079ede

          SHA1

          345b73789f67ab481ad8455d857fbd0386a707c0

          SHA256

          0c39660946ab12fcf67a18328c0a8a316781f4b388013c941c0ce1382cd163aa

          SHA512

          40a0c05a6b4ca08e2fca455ddcd74bc31971dd9a939809b4c0001a681994f75a2a29dcff47839d8ba63080a5515d53bbeb9a3e595daf1dc5071e0226eadddb47

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\{8C352233-8230-4C9F-AE74-CA1257D600C5}\_Setup.dll
          Filesize

          52KB

          MD5

          b732900d80dbbb748422c78aeb1cfa87

          SHA1

          4dcd1cb3e4a3368c31509699cbe73542ef919983

          SHA256

          280af0d1a1218f8eceec057002ddfb83192e13f6188f3225cb25d256ed57bd05

          SHA512

          65255e66e2302ed019dc2f141431462e9e774d88b9e52f682009808de7690addd0996e321194d50a3153bad072cf2414e53e5ef895928f1be52fc15cae770b2a

          Download Submit