Overview

overview

7

Static

static

1

RadioBOSS_....2.exe

windows10-2004-x64

7

RadioBOSS_...64.exe

windows10-2004-x64

7

RadioBOSS_...er.exe

windows10-2004-x64

1

RadioBOSS_...ro.exe

windows10-2004-x64

1

RadioBOSS_...ss.exe

windows10-2004-x64

1

RadioBOSS_...er.exe

windows10-2004-x64

1

RadioBOSS_...ro.exe

windows10-2004-x64

1

RadioBOSS_...ss.exe

windows10-2004-x64

1

Resubmissions

03-03-2023 06:07

230303-gvgy7afh5x 9

03-03-2023 06:03

230303-gsfcksgd64 1

03-03-2023 05:58

230303-gpdpksfh4v 7

03-03-2023 05:55

230303-gmxpnsgd56 7

Analysis

  • max time kernel
    5s
  • max time network
    13s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-03-2023 05:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RadioBOSS_6.2.4.2/radioboss_setup_6.2.4.2.exe

  • Size

    31.6MB

  • MD5

    b3fd550756f42cd50028d091908b56d5

  • SHA1

    83434c91b1b9c11819f9dd7eee9c85e12bf35e62

  • SHA256

    5f93a5a01347f8e28ffd62b47aec67419be714dd3547b874e33135c8005fa53a

  • SHA512

    63554c4ee69ec07ce289ea54cdca91f6b6d71c812a5e23bb23cbbbf8ba44ced2323fa60d299247835c1e14f161567945574dbbde5a84825fe63891b7b1413c67

  • SSDEEP

    393216:h/2n097r7CDk0WFZjgZ9JwY8fvVOgDg6mC1HBA8reUZfXwbr+cJ+Ja9Fi3K5ACL2:EnwHCw0rJw3vPU6YwPZvafkJRFcU7b

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\RadioBOSS_6.2.4.2\radioboss_setup_6.2.4.2.exe
    "C:\Users\Admin\AppData\Local\Temp\RadioBOSS_6.2.4.2\radioboss_setup_6.2.4.2.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Users\Admin\AppData\Local\Temp\is-5GQLS.tmp\radioboss_setup_6.2.4.2.tmp
      "C:\Users\Admin\AppData\Local\Temp\is-5GQLS.tmp\radioboss_setup_6.2.4.2.tmp" /SL5="$F0038,32154401,1069568,C:\Users\Admin\AppData\Local\Temp\RadioBOSS_6.2.4.2\radioboss_setup_6.2.4.2.exe"
      2⤵
      • Executes dropped EXE
      PID:3248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\is-5GQLS.tmp\radioboss_setup_6.2.4.2.tmp
    Filesize

    3.3MB

    MD5

    133ef2790d690a3ed359236287c71e87

    SHA1

    278dd607f42a5d8643fcbb4eca49f2ebe0e94f03

    SHA256

    b0d0ccdd55acd3bcdae3f0668b179648ce9196f3dfd6885c1c30f5f416152f7c

    SHA512

    d3fdd79a53db25ac3bcf404c8b13f5f881de91d5796afc6521c1ce65343d2171a10a6fcb49426e9bda657f0eefcc9d52478a45ad89aec22ca8f30a6c59b20b9c

    Download Submit

  • memory/2256-133-0x0000000000400000-0x0000000000512000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3248-138-0x0000000000ED0000-0x0000000000ED1000-memory.dmp

    Filesize

    4KB

    Download