Overview

overview

1

Static

static

663f252058...93.exe

windows7-x64

1

663f252058...93.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    43s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2022, 12:38

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    663f2520584fab0f412cc287e87205b714d96fa76c2482ae75d3b28826a50e93.exe

  • Size

    384KB

  • MD5

    0c63d9c52e1cfc7d8d2c5356741aa3cf

  • SHA1

    39c499258d6a2b550e7830661b537825d6f2fee8

  • SHA256

    663f2520584fab0f412cc287e87205b714d96fa76c2482ae75d3b28826a50e93

  • SHA512

    173a79db5945a62fff1276d4ec3dd1700acff668d9f7f894f76279af5c21e241bb41b675e25ee2226f84e9e198d71cec8c7cde9ab69f036ff7ef9b841a838a48

  • SSDEEP

    3072:pw7msNtEOPdz1b8IHrUddfERKgdKUbRGTSIVbk7uMiL30kBY+3:u7msNtEO1mIsdMRKgMUcTDV9MS30ki+3

Score
1/10

Malware Config

Signatures

  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

Processes

  • C:\Users\Admin\AppData\Local\Temp\663f2520584fab0f412cc287e87205b714d96fa76c2482ae75d3b28826a50e93.exe
    "C:\Users\Admin\AppData\Local\Temp\663f2520584fab0f412cc287e87205b714d96fa76c2482ae75d3b28826a50e93.exe"
    1⤵
    • Checks processor information in registry
    PID:1104

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1104-54-0x000007FEF4360000-0x000007FEF4D83000-memory.dmp

          Filesize

          10.1MB

          Download

        • memory/1104-55-0x000007FEF3080000-0x000007FEF4116000-memory.dmp

          Filesize

          16.6MB

          Download

        • memory/1104-56-0x00000000021B6000-0x00000000021D5000-memory.dmp

          Filesize

          124KB

          Download