628630b39e02e8d3099edabd053b5ce0251493ec6d33d8a6eada760e3aed187d | Triage

Submit
Reports

Overview

overview

1

Static

static

Netspeedmeter.exe

windows7-x64

1

Netspeedmeter.exe

windows10-2004-x64

1

Analysis

max time kernel
189s
max time network
230s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
26-11-2022 04:17

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Netspeedmeter.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Netspeedmeter.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Netspeedmeter.exe
Size

288KB
MD5

bb4e316a4c8ef4d4aad8a35c5c63b0ce
SHA1

8f5f236c019b3845c408c15f32aaeac408d5df89
SHA256

628630b39e02e8d3099edabd053b5ce0251493ec6d33d8a6eada760e3aed187d
SHA512

9245a72bb9c00e4e8012dea4926a00575310c9fc126dadce578192cebd1c77665e0c727300df6ec82bbe9dae7de83c7c37929b5971bdcf3d9e81218c1061df89
SSDEEP

3072:HqKVqfYyA15ms/e0H4ViewnLKVqfYyj15ms/efH4ViecnA:HBIfc15mEDH4ViXuIfX15mEQH4ViD

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\Netspeedmeter.exe
"C:\Users\Admin\AppData\Local\Temp\Netspeedmeter.exe"
1⤵
PID:4432

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4332

C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s fdPHost
1⤵
PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4432-132-0x0000000000560000-0x00000000005AE000-memory.dmp

Filesize
312KB

Download
memory/4432-133-0x0000000005680000-0x0000000005C24000-memory.dmp

Filesize
5.6MB

Download
memory/4432-134-0x00000000051C0000-0x0000000005252000-memory.dmp

Filesize
584KB

Download
memory/4432-135-0x0000000005270000-0x000000000527A000-memory.dmp

Filesize
40KB

Download

© 2018-2024

Terms | Privacy