Overview

overview

7

Static

static

1

RadioBOSS_....2.exe

windows10-2004-x64

7

RadioBOSS_...64.exe

windows10-2004-x64

7

RadioBOSS_...er.exe

windows10-2004-x64

1

RadioBOSS_...ro.exe

windows10-2004-x64

1

RadioBOSS_...ss.exe

windows10-2004-x64

1

RadioBOSS_...er.exe

windows10-2004-x64

1

RadioBOSS_...ro.exe

windows10-2004-x64

1

RadioBOSS_...ss.exe

windows10-2004-x64

1

Resubmissions

03-03-2023 06:07

230303-gvgy7afh5x 9

03-03-2023 06:03

230303-gsfcksgd64 1

03-03-2023 05:58

230303-gpdpksfh4v 7

03-03-2023 05:55

230303-gmxpnsgd56 7

Analysis

  • max time kernel
    59s
  • max time network
    67s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-03-2023 05:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RadioBOSS_6.2.4.2/radioboss_setup_6.2.4.2_x64.exe

  • Size

    35.8MB

  • MD5

    f1a71910d9f05e56f21e5c4e5321ea02

  • SHA1

    be4ac8e874614e4ffd4aafc7f2e9b35b6f1bfb28

  • SHA256

    f66722f101920c6de52bc9b20cd5f3fe14db00e4e8007edf418678bf8197afda

  • SHA512

    bd5aee9ddb2eed2d85ef8ef22f169f58c7f445766eeb60996bb9e9fe882ecd4eb83052ce597501ebbf6a14e40775c109aeb3ccda5296207a983b66228a5c8224

  • SSDEEP

    786432:lOHIhav4EctmtB39Owwwqnn8sN7N3uXGmg8tra:lOHIhav4p8HNOp88ZeXG6tra

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\RadioBOSS_6.2.4.2\radioboss_setup_6.2.4.2_x64.exe
    "C:\Users\Admin\AppData\Local\Temp\RadioBOSS_6.2.4.2\radioboss_setup_6.2.4.2_x64.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:4000
    • C:\Users\Admin\AppData\Local\Temp\is-IGFPM.tmp\radioboss_setup_6.2.4.2_x64.tmp
      "C:\Users\Admin\AppData\Local\Temp\is-IGFPM.tmp\radioboss_setup_6.2.4.2_x64.tmp" /SL5="$90062,36566931,1069568,C:\Users\Admin\AppData\Local\Temp\RadioBOSS_6.2.4.2\radioboss_setup_6.2.4.2_x64.exe"
      2⤵
      • Executes dropped EXE
      PID:3348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\is-IGFPM.tmp\radioboss_setup_6.2.4.2_x64.tmp
    Filesize

    3.3MB

    MD5

    830e93873039294d7480b2901cb7ae55

    SHA1

    732b6d59af42388fd456da9a81aa83b6cd17053e

    SHA256

    ff268aecd5b7d29f3f87067ba65edc8a9ac98fc0580c2a071ddcf8d5c5d90621

    SHA512

    695869a980ede17ad045cb60ab70109d779be7fbfe6299017ed67199c894a937ef7bc3a35aab3e0afefc38885887f2630470c1ac37be0d2898f96efd1c58affe

    Download Submit

  • memory/3348-138-0x0000000002820000-0x0000000002821000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3348-141-0x0000000000400000-0x000000000074D000-memory.dmp

    Filesize

    3.3MB

    Download

  • memory/3348-142-0x0000000002820000-0x0000000002821000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4000-133-0x0000000000400000-0x0000000000512000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/4000-140-0x0000000000400000-0x0000000000512000-memory.dmp

    Filesize

    1.1MB

    Download