Overview

overview

7

Static

static

7

1a2f341a16...2e.exe

windows7-x64

7

1a2f341a16...2e.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    42s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    29-11-2022 10:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1a2f341a16b9353999d7df568c6234c4cebeff1fdb18630d0296ac06c14d532e.exe

  • Size

    250KB

  • MD5

    1be1f0583b8ef269212847d1bd436af0

  • SHA1

    29b4e0b06b2e0d65d0bc9c88cc1dc05c60bbe210

  • SHA256

    1a2f341a16b9353999d7df568c6234c4cebeff1fdb18630d0296ac06c14d532e

  • SHA512

    a48b2b23b403f9a70495df98006f489336279e88b01b9a04eca39d5c38445ae536671cb2d3626a6363db2b724bb2c774bf44ffeabd30d90270071f11227ff175

  • SSDEEP

    6144:/fBSZRy4p2/TrNv3T6n/ZxWxUajqFXuQQs6:/fi32brNv3mn/mPjm+Zh

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1a2f341a16b9353999d7df568c6234c4cebeff1fdb18630d0296ac06c14d532e.exe
    "C:\Users\Admin\AppData\Local\Temp\1a2f341a16b9353999d7df568c6234c4cebeff1fdb18630d0296ac06c14d532e.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: EnumeratesProcesses
    PID:1884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\007d7e2d-65b4-4886-adaf-4f9c061caf7d\AgileDotNetRT.dll
    Filesize

    120KB

    MD5

    684739fc9301c31f34156ee56768cf87

    SHA1

    ccd6eafdd055dd327774209b86b3da62e27d8237

    SHA256

    38f0b0b7ac812c3f2c2c26109bbc5383e6d035b2a7d6ebaae52002ec3a14b782

    SHA512

    f06481a4d0d712d58c1e0b200e2c2e5ef95e394dbceb5ef6d71d1e33d9d945aa2632805c0e7198b2fce3b58014b94efb95b144815939a2a65f757cb8ca24aecd

    Download Submit
  • memory/1884-54-0x0000000075201000-0x0000000075203000-memory.dmp
    Filesize

    8KB

    Download
  • memory/1884-57-0x0000000074740000-0x0000000074CEB000-memory.dmp
    Filesize

    5.7MB

    Download
  • memory/1884-58-0x0000000073C10000-0x0000000073C42000-memory.dmp
    Filesize

    200KB

    Download
  • memory/1884-59-0x0000000074740000-0x0000000074CEB000-memory.dmp
    Filesize

    5.7MB

    Download
  • memory/1884-60-0x0000000073C10000-0x0000000073C42000-memory.dmp
    Filesize

    200KB

    Download