Overview

overview

1

Static

static

a7240ee637...58.exe

windows7-x64

1

a7240ee637...58.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    31s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    03/12/2022, 17:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a7240ee637a60a40d552c015f173525277f3e2dfe72b72212f2e1c1b05eab258.exe

  • Size

    201KB

  • MD5

    8b790905aa6ad3d3052ee3bf82dd788e

  • SHA1

    3ca415f0a15afcd45d5cb601e13ff681dce24f1c

  • SHA256

    a7240ee637a60a40d552c015f173525277f3e2dfe72b72212f2e1c1b05eab258

  • SHA512

    10ab4f8cf903303de6be1496ac74d7099a6c72e8d222998168324c591787ade9d5cd53832505ae3380ee3f03a839b852483c992be47f699d27d9736ba60670c6

  • SSDEEP

    3072:GNKJQazM+7Y4BriluiuYw1y0ss6n1O7WnXi2+PoabCJeBUrp:GNKJ6+7YEr2uYCypTk7WVabuemN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Windows\Explorer.EXE
    C:\Windows\Explorer.EXE
    1⤵
      PID:1340
      • C:\Users\Admin\AppData\Local\Temp\a7240ee637a60a40d552c015f173525277f3e2dfe72b72212f2e1c1b05eab258.exe
        "C:\Users\Admin\AppData\Local\Temp\a7240ee637a60a40d552c015f173525277f3e2dfe72b72212f2e1c1b05eab258.exe"
        2⤵
        • Suspicious behavior: EnumeratesProcesses
        • Suspicious use of WriteProcessMemory
        PID:1460

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1340-60-0x000000007FFF0000-0x000000007FFF7000-memory.dmp

      Filesize

      28KB

      Download

    • memory/1460-54-0x0000000000400000-0x000000000042C000-memory.dmp

      Filesize

      176KB

      Download

    • memory/1460-55-0x0000000000220000-0x0000000000224000-memory.dmp

      Filesize

      16KB

      Download

    • memory/1460-56-0x00000000002A0000-0x00000000002D9000-memory.dmp

      Filesize

      228KB

      Download

    • memory/1460-57-0x0000000000400000-0x000000000042C000-memory.dmp

      Filesize

      176KB

      Download

    • memory/1460-58-0x0000000000400000-0x000000000042C000-memory.dmp

      Filesize

      176KB

      Download

    • memory/1460-59-0x0000000075F81000-0x0000000075F83000-memory.dmp

      Filesize

      8KB

      Download

    • memory/1460-64-0x0000000001F91000-0x0000000001F95000-memory.dmp

      Filesize

      16KB

      Download

    • memory/1460-63-0x0000000010000000-0x0000000010013000-memory.dmp

      Filesize

      76KB

      Download

    • memory/1460-65-0x0000000001DC0000-0x0000000001EC0000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/1460-66-0x00000000002A0000-0x00000000002D9000-memory.dmp

      Filesize

      228KB

      Download