Overview

overview

7

Static

static

7

a45e49b20a...f3.exe

windows7-x64

7

a45e49b20a...f3.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    26s
  • max time network
    35s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    28-11-2022 17:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a45e49b20a945f4516abd054fc8372d0ab2337c7f59b1eeb8e652a13e83805f3.exe

  • Size

    426KB

  • MD5

    e9235a8066b308d456bfb24357b394b5

  • SHA1

    12284d4b88cddb97c86bd50a5dad8d2797a912c3

  • SHA256

    a45e49b20a945f4516abd054fc8372d0ab2337c7f59b1eeb8e652a13e83805f3

  • SHA512

    157af660380dff7379aee8d21b00d3f87d8fbe8430e7428048a63d89b362e2bbaaec91d2b1f42d8a39fe96b5eccb0e4073a2d20d03c22aa0f601d9e89ea7ab86

  • SSDEEP

    12288:aOWhpVTwgamfylaI0wqRu7Fwr3q0B26Ghv+l:OzLfylaIPqR+FDr

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a45e49b20a945f4516abd054fc8372d0ab2337c7f59b1eeb8e652a13e83805f3.exe
    "C:\Users\Admin\AppData\Local\Temp\a45e49b20a945f4516abd054fc8372d0ab2337c7f59b1eeb8e652a13e83805f3.exe"
    1⤵
    • Loads dropped DLL
    PID:1628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\6ed9a287-57e8-403a-b912-a6284a177b64\AgileDotNetRT.dll
    Filesize

    119KB

    MD5

    6ee05d61422e4025f007d60da539b663

    SHA1

    98dfd05b896bce7cbd987d8012e055ee57cad30a

    SHA256

    edcffe546787dae9648270886275b5ff8dc5a5b358cc714645d6cb2f3f8d6880

    SHA512

    aa7f5555c3385c387b0e22411f76886b403bc503b6520b69849c7a3eb20a967aee84b8a8e4db7f96acb6ead98f61d6495f52b78c0505655d92e2f5dcc2ad17f2

    Download Submit
  • memory/1628-54-0x00000000757B1000-0x00000000757B3000-memory.dmp
    Filesize

    8KB

    Download
  • memory/1628-57-0x0000000074380000-0x000000007492B000-memory.dmp
    Filesize

    5.7MB

    Download
  • memory/1628-58-0x0000000073850000-0x0000000073882000-memory.dmp
    Filesize

    200KB

    Download
  • memory/1628-59-0x0000000074380000-0x000000007492B000-memory.dmp
    Filesize

    5.7MB

    Download