4dc8c9b2f72e691fcbb5318c24a6716e52dbc1ee30573ff265b96479c9d5c3ec | Triage

Submit
Reports

Overview

overview

7

Static

static

1

PCBS RAM C...72.exe

windows10-2004-x64

7

Sharing

General

Target

PCBS RAM Creator-53-4-0-1-1665000372.exe
Size

6.8MB
Sample

230407-xzj74scb6w
MD5

9702892a0fe9c1faca6560dbc1796159
SHA1

b35f0e839e07d454647a3713f4e9fd6810bbc2e2
SHA256

4dc8c9b2f72e691fcbb5318c24a6716e52dbc1ee30573ff265b96479c9d5c3ec
SHA512

c6d54c5dff735a037e6031854e8dbd576f84e85c3da313cf98642b1a1395d0b32f4d0d0650f426c5a41de7da2a703ca1dda779d0e4c340d58f81d3211e49eca6
SSDEEP

196608:0Ie+bF8fo0m8vCSzLRzDS6O4Znals5QV/QudKWj:gvoTMLRzD5Hl8v/Qb

Score

7^/10

agilenet

Static task

static1

Behavioral task

behavioral1

Sample

PCBS RAM Creator-53-4-0-1-1665000372.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

300 seconds

Malware Config

Targets

- Target
  
  PCBS RAM Creator-53-4-0-1-1665000372.exe
- Size
  
  6.8MB
- MD5
  
  9702892a0fe9c1faca6560dbc1796159
- SHA1
  
  b35f0e839e07d454647a3713f4e9fd6810bbc2e2
- SHA256
  
  4dc8c9b2f72e691fcbb5318c24a6716e52dbc1ee30573ff265b96479c9d5c3ec
- SHA512
  
  c6d54c5dff735a037e6031854e8dbd576f84e85c3da313cf98642b1a1395d0b32f4d0d0650f426c5a41de7da2a703ca1dda779d0e4c340d58f81d3211e49eca6
- SSDEEP
  
  196608:0Ie+bF8fo0m8vCSzLRzDS6O4Znals5QV/QudKWj:gvoTMLRzD5Hl8v/Qb
Score

7^/10

agilenet
- Loads dropped DLL
- Obfuscated with Agile.Net obfuscator
  Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
  agilenet
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy