Overview

overview

8

Static

static

4eaf7c5465...60.exe

windows7-x64

8

4eaf7c5465...60.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    124s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/11/2022, 13:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4eaf7c54656f6b2be533089a77a192b475574d28c964a23729249674ae2e0660.exe

  • Size

    236KB

  • MD5

    0e180c1adc2a94bb19cbd71afba95ae0

  • SHA1

    10707267ffbf8b849720d45b2c9c0ef9544c20eb

  • SHA256

    4eaf7c54656f6b2be533089a77a192b475574d28c964a23729249674ae2e0660

  • SHA512

    14147168b8d6b82782a7c18055acdab7198240379b656262fa1ce5e7b37ba632760128bb801d20a3a6c9e1d04a3be479d42bc2d05857bec3c0a6f1d6f0c896cd

  • SSDEEP

    6144:7qoMVYqnLDTqxgOMgrr86YuYp8Wds+uqG+zy9u2oxB+ul:75MVpLDOxgOMeA6Y/8Op2Q2B

Score
8/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 4 IoCs
  • Drops file in Windows directory 2 IoCs
  • Modifies data under HKEY_USERS 8 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4eaf7c54656f6b2be533089a77a192b475574d28c964a23729249674ae2e0660.exe
    "C:\Users\Admin\AppData\Local\Temp\4eaf7c54656f6b2be533089a77a192b475574d28c964a23729249674ae2e0660.exe"
    1⤵
    • Drops file in Windows directory
    • Suspicious behavior: EnumeratesProcesses
    PID:4440
  • C:\Windows\Iqeeqjy.exe
    C:\Windows\Iqeeqjy.exe
    1⤵
    • Executes dropped EXE
    • Drops file in System32 directory
    • Modifies data under HKEY_USERS
    PID:3728

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Windows\Iqeeqjy.exe
          Filesize

          236KB

          MD5

          0e180c1adc2a94bb19cbd71afba95ae0

          SHA1

          10707267ffbf8b849720d45b2c9c0ef9544c20eb

          SHA256

          4eaf7c54656f6b2be533089a77a192b475574d28c964a23729249674ae2e0660

          SHA512

          14147168b8d6b82782a7c18055acdab7198240379b656262fa1ce5e7b37ba632760128bb801d20a3a6c9e1d04a3be479d42bc2d05857bec3c0a6f1d6f0c896cd

          Download Submit

        • C:\Windows\Iqeeqjy.exe
          Filesize

          236KB

          MD5

          0e180c1adc2a94bb19cbd71afba95ae0

          SHA1

          10707267ffbf8b849720d45b2c9c0ef9544c20eb

          SHA256

          4eaf7c54656f6b2be533089a77a192b475574d28c964a23729249674ae2e0660

          SHA512

          14147168b8d6b82782a7c18055acdab7198240379b656262fa1ce5e7b37ba632760128bb801d20a3a6c9e1d04a3be479d42bc2d05857bec3c0a6f1d6f0c896cd

          Download Submit