Overview

overview

6

Static

static

99476524bb...48.exe

windows7-x64

6

99476524bb...48.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    61s
  • max time network
    103s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    26-11-2022 16:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    99476524bb5f56c13b7beed04be9e3c7c9e20e00c307d3238ca6ee3651dbb248.exe

  • Size

    285KB

  • MD5

    231e42df4014360db2bb661c6ee64487

  • SHA1

    d0655775f72fba9c2d0d372a434a8325af619520

  • SHA256

    99476524bb5f56c13b7beed04be9e3c7c9e20e00c307d3238ca6ee3651dbb248

  • SHA512

    8c9208a4ca1a41dafce69900735256a5448d93e9a4d24b48da6383ca614d460fc64fef4fab15972ccf765b479de05e093831bae6c2c126e06981713275b98351

  • SSDEEP

    3072:94Jxu2hqlPA8nM+AWoMofl4rDNeg/uTsTf5vQ8micd6MomYs:94JxnsPRM+gffl4r9zJQZBUMoHs

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\99476524bb5f56c13b7beed04be9e3c7c9e20e00c307d3238ca6ee3651dbb248.exe
    "C:\Users\Admin\AppData\Local\Temp\99476524bb5f56c13b7beed04be9e3c7c9e20e00c307d3238ca6ee3651dbb248.exe"
    1⤵
    • Drops file in Windows directory
    PID:960

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/960-54-0x0000000075761000-0x0000000075763000-memory.dmp

    Filesize

    8KB

    Download

  • memory/960-55-0x0000000000160000-0x000000000018F000-memory.dmp

    Filesize

    188KB

    Download