Overview

overview

8

Static

static

8

f318b8a6d7...f8.exe

windows7-x64

8

f318b8a6d7...f8.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    139s
  • max time network
    157s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    04-12-2022 11:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f318b8a6d711098993a892380d33d271cf61ede80992b14ebff7e72893ca03f8.exe

  • Size

    2.8MB

  • MD5

    f2d31e81cdd4639e2ca05129530cf7f8

  • SHA1

    f7763c63a4b87b07dc2759a0dadcde677854763f

  • SHA256

    f318b8a6d711098993a892380d33d271cf61ede80992b14ebff7e72893ca03f8

  • SHA512

    5275bd9c97a395e8d2dae8bc2cd2a2b2cec4740e8f35cbffaf430862cf461bcb88baf1f78197ae8111c13e091dd9302dc2f0027b1434a5b09c3c2ca970c05e36

  • SSDEEP

    3072:CNXkLPbPNkq/D6rzaQwQtXAcqT9CbJcKa60:eAb1VD6KcXAcqMbJcKa60

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unexpected DNS network traffic destination 10 IoCs

    Network traffic to other servers than the configured DNS servers was detected on the DNS port.

Processes

  • C:\Users\Admin\AppData\Local\Temp\f318b8a6d711098993a892380d33d271cf61ede80992b14ebff7e72893ca03f8.exe
    "C:\Users\Admin\AppData\Local\Temp\f318b8a6d711098993a892380d33d271cf61ede80992b14ebff7e72893ca03f8.exe"
    1⤵
      PID:1504

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1504-54-0x0000000000400000-0x00000000006C3000-memory.dmp

      Filesize

      2.8MB

      Download

    • memory/1504-55-0x0000000000400000-0x00000000006C3000-memory.dmp

      Filesize

      2.8MB

      Download