Overview

overview

8

Static

static

8

fe1a36263e...cb.exe

windows7-x64

8

fe1a36263e...cb.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    40s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    29-11-2022 15:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe1a36263ebcca18d5ca290a82948b9a41b664076ceaa132b2315ee488b5dfcb.exe

  • Size

    597KB

  • MD5

    01a5188e4ff9268b8bf93afcd7cda903

  • SHA1

    321a7f8c0870df736dff16ea115351592fc1557f

  • SHA256

    fe1a36263ebcca18d5ca290a82948b9a41b664076ceaa132b2315ee488b5dfcb

  • SHA512

    e570c6554a42fb7c80ecf27e4191ea0b733be221c0bcf099617f66fe3b646188902817eb5201f65b9ea1f1872430bb03fdd9af2f974845c08e08a3cb0b72f29c

  • SSDEEP

    12288:vRigYTDVEqfsO1FNlISF654baenkB83iNvQ1eictP3FcMpD2roS:v/YHBXFFakK8AzNFmMo

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Loads dropped DLL 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\fe1a36263ebcca18d5ca290a82948b9a41b664076ceaa132b2315ee488b5dfcb.exe
    "C:\Users\Admin\AppData\Local\Temp\fe1a36263ebcca18d5ca290a82948b9a41b664076ceaa132b2315ee488b5dfcb.exe"
    1⤵
    • Loads dropped DLL
    PID:1756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\mgs.dat
    Filesize

    511KB

    MD5

    2de8200d2e33e0a2f385656e9018d4e7

    SHA1

    96b12faf2e6f090529d1b2b85a5c9add48ffe8c1

    SHA256

    396fc1732e72fe48515b15dfac7821375bf47aa5e61022f7e11642ff9ced61c8

    SHA512

    0f8faf33149778bef74ef1bac6c0cf6feee6bcc000dbe824102f906210dcd947e8c75d6aa85d05f1ee8c6bdf92f4320629aeac5680879c700530369431bf6fca

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mgs.dat
    Filesize

    511KB

    MD5

    2de8200d2e33e0a2f385656e9018d4e7

    SHA1

    96b12faf2e6f090529d1b2b85a5c9add48ffe8c1

    SHA256

    396fc1732e72fe48515b15dfac7821375bf47aa5e61022f7e11642ff9ced61c8

    SHA512

    0f8faf33149778bef74ef1bac6c0cf6feee6bcc000dbe824102f906210dcd947e8c75d6aa85d05f1ee8c6bdf92f4320629aeac5680879c700530369431bf6fca

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mgs.dat
    Filesize

    511KB

    MD5

    2de8200d2e33e0a2f385656e9018d4e7

    SHA1

    96b12faf2e6f090529d1b2b85a5c9add48ffe8c1

    SHA256

    396fc1732e72fe48515b15dfac7821375bf47aa5e61022f7e11642ff9ced61c8

    SHA512

    0f8faf33149778bef74ef1bac6c0cf6feee6bcc000dbe824102f906210dcd947e8c75d6aa85d05f1ee8c6bdf92f4320629aeac5680879c700530369431bf6fca

    Download Submit

  • memory/1756-54-0x0000000075CF1000-0x0000000075CF3000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1756-55-0x0000000001150000-0x000000000122D000-memory.dmp

    Filesize

    884KB

    Download

  • memory/1756-59-0x0000000001150000-0x000000000122D000-memory.dmp

    Filesize

    884KB

    Download