9342970e6e371fbe9cf6371833981c25ae0244b41f7296a723fe9d891c25375b

Analysis

max time kernel
46s
max time network
51s
platform
windows7_x64
resource
win7-20220901-en
resource tags

arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
submitted
31/10/2022, 00:31

Target

9342970e6e371fbe9cf6371833981c25ae0244b41f7296a723fe9d891c25375b.exe
Size

218KB
MD5

91de9a11e9b6d6ffb00cd28ccb7e7a10
SHA1

75fecb176235da61e9da8a3d372a1238730468f0
SHA256

9342970e6e371fbe9cf6371833981c25ae0244b41f7296a723fe9d891c25375b
SHA512

b0cd03116143fe6bd92afb5bfa2733c320fea48725f0dbae3b853facb1600f674658784f62d3011ca788308d09aac9a838ab8544c755a3529a7c342a8de09907
SSDEEP

3072:XaTKVJllsrdX9pd/Y5stQp+P+UWXczKlJnLQc76c+g6h6tSyVUVd5PPpwVg:gKXleBVYC+UWIqLQc76G6kdVmbxwVg

Score

6^/10

discovery

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\Tasks\SpikeSpider.job	9342970e6e371fbe9cf6371833981c25ae0244b41f7296a723fe9d891c25375b.exe

C:\Users\Admin\AppData\Local\Temp\9342970e6e371fbe9cf6371833981c25ae0244b41f7296a723fe9d891c25375b.exe
"C:\Users\Admin\AppData\Local\Temp\9342970e6e371fbe9cf6371833981c25ae0244b41f7296a723fe9d891c25375b.exe"
1⤵
- Drops file in Windows directory
PID:1500

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

memory/1500-54-0x0000000075D71000-0x0000000075D73000-memory.dmp

Filesize
8KB

Download
memory/1500-55-0x0000000000190000-0x00000000001BF000-memory.dmp

Filesize
188KB

Download