Analysis

  • max time kernel
    22s
  • max time network
    27s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29-10-2022 08:18

General

  • Target

    838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b.exe

  • Size

    313KB

  • MD5

    ecea9c9430044d8b326e2a1fd4963558

  • SHA1

    68c5c67d22b9966bd69e3a7acfc30be9a314baca

  • SHA256

    838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b

  • SHA512

    98ea83350f9fa6c3e23e69ffa44d12f528d47f9af08604f3b1f35288aa4689c9d13e901e38b2c26d6aae7817b29ae5f19001585778084e91bc167459e3c820e1

  • SSDEEP

    6144:FrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lm:Fryu6/eIo4vMResyEf0uP9d9UG0m

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b.exe
    "C:\Users\Admin\AppData\Local\Temp\838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b.exe"
    1⤵
    • Loads dropped DLL
    PID:3040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\TsuBE2E3D8D.dll

    Filesize

    13KB

    MD5

    ce1cd862952f9bcee9ceec805fdb7895

    SHA1

    8f08e53bd66fe84a87958ce083e2389718b5a091

    SHA256

    eb832c3fa2d5135d6a24c5df56e0ff0fd2e5c6350505045a06f1bd32007684e8

    SHA512

    275552256c2226ad5f90c5e6bd7012f6995f2dbdb50380836c7dded694732bc9b25bf73930b24c8853e9b83ab5cdbd2979e4ea4e40a33e04fa1c28ac12f3864c

  • C:\Users\Admin\AppData\Local\Temp\{008B3557-C1DE-4E65-AC8E-89FCDB6817A1}\Custom.dll

    Filesize

    36KB

    MD5

    303f3fa16765a2ed2fb6562dfd184088

    SHA1

    d6ccf2b61023b03dc74864f984925989de82943b

    SHA256

    3d20fde0f345ba8e086cde363e4affbdba6abdc5432327d62c361200609638f0

    SHA512

    ee57eb05eb26f80e1c09c1426d1952a766c66a554b11e75a66189a5a166b39f8d2059d0b8f204a4c6237185b26e9cdb4dc98c63a73bf9f365115db2571b524fb

  • C:\Users\Admin\AppData\Local\Temp\{008B3557-C1DE-4E65-AC8E-89FCDB6817A1}\_Setup.dll

    Filesize

    11KB

    MD5

    4b6f49adb98f442c2d2fe8c74060dedc

    SHA1

    f3d64342d4c8370c4ed94056c442efe7ab69706b

    SHA256

    0b780f571c06bd7cc0a89f6b9ad45d6bc217519f6c6018621cf1f59b03fadf9f

    SHA512

    7145ecb10bd8570b30a2080ce00b796b5ddf19e6e0a1c5ffdde46d4eac9885889a60a181cd42505e2fc0d870183148b78fda702548694a9cd42d171e07b96e98