Overview

overview

8

Static

static

8

b0b91930c4...7e.exe

windows7-x64

8

b0b91930c4...7e.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    151s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    31/10/2022, 01:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b0b91930c4b7ca7549e471c4349608ec46e5fe2926772820492798e8348f547e.exe

  • Size

    243KB

  • MD5

    a19427012535d0b7b1f801dfaa69d4f0

  • SHA1

    ec62199d41a6a1bcd7117f99eaf44ceb13329eec

  • SHA256

    b0b91930c4b7ca7549e471c4349608ec46e5fe2926772820492798e8348f547e

  • SHA512

    1a537e186cf5f5c980f907b1ce93b35b6b6b53bb7264f249db22d12dad748c1899a55efb1ebdeb82a38a4e805dbbcc0efb4c985d2f37ea94441ceccc5971ff67

  • SSDEEP

    3072:R06TPH0SrN3IHDGKGR9oKpPCR3lH1akXDMOEkXy0fgHOy7IZWIt/Te83bM:nrN3IHDGKy95pe3lMy/EA2uugt7e83bM

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious behavior: EnumeratesProcesses 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b0b91930c4b7ca7549e471c4349608ec46e5fe2926772820492798e8348f547e.exe
    "C:\Users\Admin\AppData\Local\Temp\b0b91930c4b7ca7549e471c4349608ec46e5fe2926772820492798e8348f547e.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:1812

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1812-54-0x00000000001E0000-0x000000000029A000-memory.dmp

    Filesize

    744KB

    Download

  • memory/1812-55-0x00000000001E0000-0x000000000029A000-memory.dmp

    Filesize

    744KB

    Download