Analysis
-
max time kernel
150s -
max time network
155s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
23-11-2022 09:43
General
-
Target
cd7e4e43f47b5f362dfe21ba3d9d6af33c38f0d47635976bd7d444de39f27146.exe
-
Size
140KB
-
MD5
e6c44cb4418cfb5e82aa8713dc783ba9
-
SHA1
3a5b5fb8ecd400569c1557582b9629acc593710a
-
SHA256
cd7e4e43f47b5f362dfe21ba3d9d6af33c38f0d47635976bd7d444de39f27146
-
SHA512
cd7b728a689f7f44d169162b8c63fc94b83e38a1b8a50f8da139a4fa3a1be534ea9fd5628168e59ebcaaefcf94148c5acf909beb60ec58317a6e1af53f8dda3d
-
SSDEEP
3072:Mak1J6uxeTSbWkZZm/jdmHvAi6YMVEMWUcSLCydHLn:/EkuEyWPKvA7YMV7CyVL
Score
10/10
Malware Config
Signatures
-
NanoCore
NanoCore is a remote access tool (RAT) with a variety of capabilities.
-
Adds Run key to start application 2 TTPs 1 IoCs
-
Checks whether UAC is enabled 1 TTPs 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\cd7e4e43f47b5f362dfe21ba3d9d6af33c38f0d47635976bd7d444de39f27146.exe"C:\Users\Admin\AppData\Local\Temp\cd7e4e43f47b5f362dfe21ba3d9d6af33c38f0d47635976bd7d444de39f27146.exe"1⤵
- Adds Run key to start application
- Checks whether UAC is enabled
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
5.7MB
-
Filesize
5.7MB