Overview

overview

8

Static

static

8

c15e4c257b...05.exe

windows7-x64

8

c15e4c257b...05.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    37s
  • max time network
    31s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    04-12-2022 11:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c15e4c257b8ac5d8c45c8814ffe9dc2c10c7651c80e1c45eaaf0026d255a1705.exe

  • Size

    191KB

  • MD5

    b86b4135140d868d8b8e9b4b4ee74050

  • SHA1

    13ddae021b9fb9641a793f5923b4c0c067099c73

  • SHA256

    c15e4c257b8ac5d8c45c8814ffe9dc2c10c7651c80e1c45eaaf0026d255a1705

  • SHA512

    642502f21f822cc69be3f5bd93418e3edfbb4c794a07bdd4a581f967019774494b67e7166d7b969eee1c35752822b5457b95e1a007e60562b9a242bff94520c7

  • SSDEEP

    3072:aBhGrhzNWHamydhFk0Nxqb2os7cz4Wox1cEiehaKxQMm+pPJPMUqrwAgRkkIy0V7:aXY1NWOhFkgxqbccz6cEpwEQ+Prqayk6

Score
8/10
persistenceupx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Adds Run key to start application 2 TTPs 2 IoCs
    persistence

Processes

  • C:\Users\Admin\AppData\Local\Temp\c15e4c257b8ac5d8c45c8814ffe9dc2c10c7651c80e1c45eaaf0026d255a1705.exe
    "C:\Users\Admin\AppData\Local\Temp\c15e4c257b8ac5d8c45c8814ffe9dc2c10c7651c80e1c45eaaf0026d255a1705.exe"
    1⤵
    • Adds Run key to start application
    PID:1116

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1116-54-0x0000000000400000-0x0000000000484000-memory.dmp

    Filesize

    528KB

    Download