Overview

overview

3

Static

static

3

LXiniFile.exe

windows7-x64

1

LXiniFile.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2023, 18:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LXiniFile.exe

  • Size

    2.1MB

  • MD5

    6a7997d41a1445259c07613c54c5c851

  • SHA1

    1907023d18bf8a2895ff706c031390f3c276adf4

  • SHA256

    53f818fb1c8f4fa43725051b459952839b5e38a34a3a05e85fcacf0f8cfea4c1

  • SHA512

    579e0218fbb29791d44ab31ae7469954ab47dca8631999d34fb3dfde42141dc4499b923e1f705e9761546c08a7a4c1a8a9f29243b9adb9bff4ed68a34e30404b

  • SSDEEP

    24576:D0yXg0WshRKCAabjdzR+MRZBgT5W1siuYSNB2SjL81b43zagm4ST:I+Wp8MLNsSv8uzaJ4ST

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\LXiniFile.exe
    "C:\Users\Admin\AppData\Local\Temp\LXiniFile.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    PID:1232

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1232-54-0x00000000001C0000-0x00000000001C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/1232-55-0x0000000000400000-0x000000000061A000-memory.dmp

          Filesize

          2.1MB

          Download