1c1fc2475fe76c38b423e356eafdef232c875bc3c33005cf24a1319d6781e1b6

Analysis

max time kernel
29s
max time network
35s
platform
windows10-2004_x64
resource
win10v2004-20230621-en
resource tags

arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
submitted
27/06/2023, 05:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

MiniCrypter.exe
Size

1.1MB
MD5

93c2e56079b744982ba5ecace8343568
SHA1

3d6724d426c7716c75d80fe2d2ecd954100b02c3
SHA256

911da5a3ce67360908803cf6951936c01ae1bc11d7a599f2eae3f651683edaf2
SHA512

578795e544ebdf1e0525e52201194d6ab742d000d29687223dac3a190cbee2375a0c16a8362342671035b8e88ef4cbc2fdddd8343e502ef3ec484b61a17c712c
SSDEEP

24576:94JIE8vSmAb0+9+biy5uj6T7YPXW+VyiUdm95WWxx3hV:6e/Stv9+Gy5u00PG+UJm95LxxRV

Score

5^/10

Malware Config

Signatures

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process	procid_target
PID 3276 set thread context of 4060	3276	MiniCrypter.exe	85

Suspicious use of WriteProcessMemory 5 IoCs

description	pid	Process	procid_target
PID 3276 wrote to memory of 4060	3276	MiniCrypter.exe	85
PID 3276 wrote to memory of 4060	3276	MiniCrypter.exe	85
PID 3276 wrote to memory of 4060	3276	MiniCrypter.exe	85
PID 3276 wrote to memory of 4060	3276	MiniCrypter.exe	85
PID 3276 wrote to memory of 4060	3276	MiniCrypter.exe	85

C:\Users\Admin\AppData\Local\Temp\MiniCrypter.exe
"C:\Users\Admin\AppData\Local\Temp\MiniCrypter.exe"
1⤵
- Suspicious use of SetThreadContext
- Suspicious use of WriteProcessMemory
PID:3276
- C:\Users\Admin\AppData\Local\Temp\MiniCrypter.exe
  "C:\Users\Admin\AppData\Local\Temp\MiniCrypter.exe"
  2⤵
  PID:4060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\ic#0

Filesize
3KB

MD5
d4a91fea9e6425b2398847b4ae9419c9

SHA1
51aa2da84fcbf9645050682dd69c6dbb09fcaadb

SHA256
c494ce0e92194b90904ebd7c4a98af8ba455e1de168b0f44844e4f390ad9b904

SHA512
bed67ad71b2fb1c70f03fd80ee2b57e27e5af0c716417449b61b6c33276f224d15af7da25302c1cbc9a02d0dc251db4834e83cb79d8ff5408140d6160b02bdab

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#1

Filesize
3KB

MD5
203a7768a3aee9edde6e095fa3516181

SHA1
b3472e3698a905b08d0eebf3565ed073c5b9b7c3

SHA256
314219d2533019915ab72e872880081f2a7c0971ba1f4420175e284f063fe863

SHA512
d8b75d81a39f9639d03f233c1e9dea8165a7f563521aca2f702c76293f32d7904fab908b7a5b6066838d5cb27255ed9cbbdd83ec0998ea96abaa5cfd1336a1c7

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#10

Filesize
3KB

MD5
ff9a9358b372b6bcb847ca3b3839bb82

SHA1
e0ba0ec552972b65d95fa12a49cfb2dc16fd275a

SHA256
5ac3c230b81bc6a959284010144013ef55b4a222e61bd358dd90c35114707d6e

SHA512
d826ee5040e2cd258d0e04e6b56c48d5ebf6feff19edbb323f93380902c854b8e4ea5029984796054dc5a86bbabd691a65ae92524e16dffa84625215c14b8182

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#11

Filesize
3KB

MD5
0b91ea06602ade99a063e9391a80f9ce

SHA1
54de44961449ebe8b5b4e48b3a1bfb403132d83b

SHA256
85b8f2de35078d66c102ed7d423a36947f7a732bdba87c0471f85c75fc86c6db

SHA512
7148f06d4804121041a2857b63402a88a6e58771e7502c0b6b731c561cd2beaf58a39de58665e7c7bd00de6d190c4fa788bbed9a2b419e0d008a9d12dc26116c

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#12

Filesize
3KB

MD5
e229623f4cef6568d4a56fc4b43010ae

SHA1
9b4975f05202cde2c9ceb68ac4bc591868721ca0

SHA256
71ab3ad0b21a6fe1e670a6d99bc1e77909f4098f631046a84076a5abf0ccac58

SHA512
d0da6cbf0d701724db1ba22ccbf5c5f2d170752c835c18db61e737ad6f0f5c46302443c0e18dab1ce6df4a3c2e857260390e7c3658b4f1083f65a9842fe26c1c

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#13

Filesize
3KB

MD5
05a235fc9065e421f331e5278fb4a937

SHA1
397deb53f0b0425b66bea5c3ce7715239e3f1f11

SHA256
070cba335dddb427ed6f5435c462aa3dbe4a449cadd6a6e9342cd96b463f097d

SHA512
2dd1e456e03afa433fda2a0bcf6983ac87b7446984f37c0d2191dc9f3c0517cd6b8f1d58a675a05c24cce68738087f477eef980ddbdd16dda4fff1dec860babc

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#14

Filesize
3KB

MD5
5ec716273debf3efec646bd53dc8c700

SHA1
3de3088286a77078c1f48721e720c44f9e9ab792

SHA256
99577870a1cd4ed896d5e7b13cb9b95c803918d13e6e72488ec0cd39763fe958

SHA512
d14adc7bba770c031ea252cc10538239aede0a159785b281007984e39dff7139fcbbcbdf957aa7ab4730f7cd00ad21bc86bbba66e207a7b5e588ca4e28bbe781

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#15

Filesize
3KB

MD5
585ab0687529bb63a6c766004ca5de58

SHA1
8482bbf2c4747975c84348879022228722fb47e5

SHA256
6d801b8101efaa6db115c8c8df149545d92a8744a65d9ad30a53184b279a84c2

SHA512
fb2431d62253b689e581e8bb488af8f6e4e27721c7ba81ec895bd7c46a5ed1d13905a78169e33fcf545f46284d1ab3a377d9f66fa2717f1a2fae99bf16a3818c

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#16

Filesize
3KB

MD5
9b525dcad362ce581056e3bcde707ded

SHA1
81ff218905a60eebaa9aa0797ce73349794dc5e6

SHA256
8bb27bd6cf00a23aaf36eba7764659c875b3ffa0fc2abd1cb28d689568402f36

SHA512
bf07c7e06e8d77b57f032c614779bf4fb8a269a0ddea0fa293c9c8f511ce914413fb08a9eb41365ebafee5b7d61c68104a366e300a44d119a5184b10f295b581

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#17

Filesize
3KB

MD5
40913e5fab8c231d87ae9ed82ddc48a6

SHA1
2717d8b0833a13b2e8902da04437518c5092e1a9

SHA256
c99cecff6b1543819ba333c12918a2ac99023ccc0c5b29b75c82e8d92d72b679

SHA512
8ce3e46bfe00e16da243679334de20fc3c11e496cd40caf44e85af9866dfe070b1bfad1f16cdffb693ef46302e3c270556db7420416ad156062a0f5a6e0f8ba8

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#18

Filesize
3KB

MD5
fe99c4fd792f89afe753aca126c44c9e

SHA1
e84703397d01c2bb811cc016aa37881bf9003838

SHA256
cf37071e2b083931abaf1034f7cfb5750039e212c06d5263720820f1fdced698

SHA512
e3d058e529f65e7cab56587c9b0a8a8fb80fcb53cbbeb86ef70c4c8b6fc06d62afcd18e1473f67e275d45786e6bf0b5aa9fd4827d9b5764ce092bf4959ac973f

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#19

Filesize
3KB

MD5
aa29a0f19ecc71de0930d0dc9a26d4cc

SHA1
313188354507e5d75dd3476a3de636ad91f5a8a5

SHA256
83a904808ccb980720b497a38329b3560f9f4c5f5ee1dbdb8bdc3a71d93a5102

SHA512
c6016425591fc81269dd0e22e22e04ac68f0f273c07d8706c75d2eb4b1e0b4b2451119949fc6f3eade7ff03d95b3bea5ee169831157a2a8bdb2700da6675fdaa

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#2

Filesize
3KB

MD5
b24a182d7fa3c6dcf9b63b802e852c48

SHA1
d1e987dafd714e7a18c441d2c646e9f2303d8733

SHA256
923ac49ceed3495a42664d7de8b323e19cccd1ae518fb8e8dcbc33717f715e72

SHA512
88d29d5fa53dbc6aa92d2a5eaa8b75d085021f9cad1afe674d5d840c7b30aa5d34a42d5644b86a94f9f6beddf3672e1be24ca18fd42b9b6da267e7e051a46bfb

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#20

Filesize
3KB

MD5
b9258a0250c8b4965229b6aa115e3ee1

SHA1
1b610d94473ef55b2ff1093eddee74ed640a5eaf

SHA256
22c40f03f6cfbc96da311a859ebc4e40a0311aec6824ea29b2b0e67227f057a1

SHA512
6e05987b9819d3f213a2bd76ac5f9e58508eff475be676946f8ff2e77ec3fd386a60eb358a201696afbf484f713d1dc46e3891f7f6f339aa4c4af9a3d5c2769e

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#21

Filesize
3KB

MD5
d9022d2ecc44bd835f26238c59c941d9

SHA1
e1abde3f01951958035e95f468bc55b86855b3cb

SHA256
c7b0e14e6c05108ecea7daca504272aa8bfef74e7bf394938851447f7510b06e

SHA512
00fd0a5e75775b9db108e29b7063345c35fc76088f378449f689dfb07af5cbca8444bbcdc1a06745661ea43832d3639c5acb48d2a827506826d3b53ded48bf00

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#22

Filesize
3KB

MD5
363b5c94e829771444dd3f7ea5d4931b

SHA1
4149466738b99a99fa3ff8563ca79bd371f50944

SHA256
2ac71bab6e39ec67a7ff881a377080598b27053016433e7b11da7baf87bfc861

SHA512
d15d80231a05ad67f4c41c3db28d596200901e689994b0da93d7779bbf65a2a7e90e69d3e90511e9437ed5327768f816513f0c49e5a5c873524e5cd4809fde71

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#23

Filesize
5KB

MD5
40720a196c9d874c8aa26f48c84a38c0

SHA1
164104f5022309bfdea0bee8de2423333e2c740b

SHA256
75368a3c8331d092e62a05301880cfb8e97e4b8738944d337faecfc12cc0b15a

SHA512
3aca1aa418f47991e9acf15cc59cde1506fd35c109b0c02cee5d51964f82dc982bd9a346a139432625071f9be565a60fd0bc72e4137ceb334eb7110b3c52295a

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#3

Filesize
3KB

MD5
02fc3f6e1df52bbdbc016a9d0a96c78d

SHA1
b1bbf165af2481a68adbb62c45ab4a6ba518b845

SHA256
a1bf3a6481e06a77ada42d15ad1fa4e7b0da5ab55f318753fe24ebb3c201ef75

SHA512
dd971e99311df09c583e1c0a1283f7797f069aaad1477ad5d311195ac0fa8206320e59963ad86c1f5e882818a7ad60514934562f7f2e488261baed54f6f54e22

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#4

Filesize
3KB

MD5
43b7998d3930b68ccaf511573d94b8a2

SHA1
a428ecce354ba070562715d9a3c0f3a0aca09d3e

SHA256
b983050427b4b32c67aa19890f2816abf81124235c12d83a6d46f961164d7fd6

SHA512
e4c5539cda23d088dbc367eb771c4ebf31dc21f659dda1fd6729c30d2e5ad460ef581b16dde70cc539a3da247383a29d1d4acbdabfa10bbd8c69f0d22b01828f

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#5

Filesize
3KB

MD5
8d32647b6708d54024d942fca7ab38be

SHA1
39c489fc51472ddfc13e0695b1be784e8f0cf42e

SHA256
5bd61ca2175962822cd61a246f6e870f7ab66faf749a8c41a82073b548ddfaa4

SHA512
7a04391ce36d85ff196ee5f569909e55688e39bdc90492a6004563c54a18ab0935fa9bde25962f6447c1c963793bac06c9a715834acbe7fbb08d2a3df36d8826

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#6

Filesize
3KB

MD5
c3ff0ce757fd57ebe055188fd3eca7a4

SHA1
9ad51a253501a70333db39f839348f4b45f662a3

SHA256
3ad36f84227fb32cfb47c2aee369042586ad7bfc12943f9863ea25e207faae58

SHA512
5101cb745400580e38d79a9359d4e37dea46256c26f8a4e44aee1bf4751b601933d2d877d0768b467115dd5694da86bbafaa489942995acb612a3a3ab7b747e3

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#7

Filesize
3KB

MD5
8a7601a7a334a58baefa1e45964bb42b

SHA1
e36d59ecc81906876cafd1a31a3bafadd1891a93

SHA256
374ae530b1a3efdd4ff700a29f74c3c8c17574159988ce90236c166814e4dce3

SHA512
574890eafdbfa1d84c38d890efa5d3081e88b933eb30e41e959102d81909343c4ef375db7fd02d4b3d1d2f1eab23b9bcd281dd0aaa8043212e052fa390715043

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#8

Filesize
4KB

MD5
ec595efe9f362d06d12e01e15a473294

SHA1
91be9c1010c9a66b7ab0d6b37b8be4940c089f31

SHA256
f9fa09c121c8311c6df61c6324f1b5e35a54656b2a9536932b9c809273a71702

SHA512
cb42d658f2c15bc0e388aa53175f3c0a25731b64829ce65211a8c7db46c4090abf93c3eeb441d387a5e915c7aacd7105c4504ec8ac6c148c4e43362bc75ae066

Download Submit
C:\Users\Admin\AppData\Local\Temp\ic#9

Filesize
5KB

MD5
0e4d60c5b8325f25f4a9893797c24432

SHA1
709cdd1cfed500adca25e5e2c63b7782de90483a

SHA256
b941b5f7dc098498b38c7bec24ef06e1d3cec7c6776116da870fbdd4168bcbb7

SHA512
24dad2ab4a51d029b8f29271b297c66fe23d852d825095b68e024afe5f8c200a34d46e3b7fd72db9f0ce46943353744b00e096659ed81c6b7645defb285c1091

Download Submit
memory/3276-135-0x0000000000400000-0x000000000042A000-memory.dmp

Filesize
168KB

Download
memory/4060-136-0x0000000000400000-0x000000000068F000-memory.dmp

Filesize
2.6MB

Download
memory/4060-133-0x0000000000400000-0x000000000068F000-memory.dmp

Filesize
2.6MB

Download
memory/4060-134-0x0000000000400000-0x000000000068F000-memory.dmp

Filesize
2.6MB

Download
memory/4060-137-0x0000000000400000-0x000000000068F000-memory.dmp

Filesize
2.6MB

Download
memory/4060-138-0x0000000000960000-0x0000000000961000-memory.dmp

Filesize
4KB

Download
memory/4060-307-0x0000000000400000-0x000000000068F000-memory.dmp

Filesize
2.6MB

Download
memory/4060-308-0x0000000000960000-0x0000000000961000-memory.dmp

Filesize
4KB

Download
memory/4060-309-0x0000000000400000-0x000000000068F000-memory.dmp

Filesize
2.6MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads