Overview

overview

1

Static

static

ab1138924c...f9.exe

windows7-x64

1

ab1138924c...f9.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    52s
  • max time network
    94s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    27/11/2022, 18:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab1138924cd7cc62b250c418feb8ce06efd2d0747417c119f7fdb4edc9bebef9.exe

  • Size

    855KB

  • MD5

    1c0c9b434647e0f0bc02f8f6187050dc

  • SHA1

    46968798b75345f3ba62b748fd9b819bde943b91

  • SHA256

    ab1138924cd7cc62b250c418feb8ce06efd2d0747417c119f7fdb4edc9bebef9

  • SHA512

    c1f958b246dbc968c9afdf5d4a7c1c5dc802ce722fea1b858546f02318744035c34110caca9b468b05aaec00c48db0caed8d5ab974b0f2d1fe0d1de328c849f3

  • SSDEEP

    12288:v7HFhQn0OzfO2PdiFL/+rVYRSl5NCpnLwHw1P40VbPijHNLP4u3vZxWEXwpEvPpK:vzFhbOO2PmaBFlq0UXm1P3PWBxt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 15 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ab1138924cd7cc62b250c418feb8ce06efd2d0747417c119f7fdb4edc9bebef9.exe
    "C:\Users\Admin\AppData\Local\Temp\ab1138924cd7cc62b250c418feb8ce06efd2d0747417c119f7fdb4edc9bebef9.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/956-54-0x0000000075B61000-0x0000000075B63000-memory.dmp

    Filesize

    8KB

    Download