51fe59592c57d1268461961b1aff86f4bf2da0834abe5dd83f27f96a468f7921

Analysis

max time kernel
1s
max time network
6s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
14-07-2023 14:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2361f346b1d01bexeexe_JC.exe
Size

36KB
MD5

2361f346b1d01b78a7bc6e0776648030
SHA1

f119626b6a1d16bf884ad5f2d9f3236d3c4eef36
SHA256

51fe59592c57d1268461961b1aff86f4bf2da0834abe5dd83f27f96a468f7921
SHA512

57d2d65c44eed3cf5087e4ef27ae654f49763739a7758187c9a7460e2a5106db3b8eac0555c25b3021b64e9adda301d8650201dbeda788bdff2d87107bb40d37
SSDEEP

768:q0ZziOWwULueOSdE8tOOtEvwDpjej4AYsqSh+DETkejlsDBh:q0zizzOSxMOtEvwDpjC39+D+5ZWh

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\2361f346b1d01bexeexe_JC.exe
"C:\Users\Admin\AppData\Local\Temp\2361f346b1d01bexeexe_JC.exe"
1⤵
PID:3808
- C:\Users\Admin\AppData\Local\Temp\asih.exe
  "C:\Users\Admin\AppData\Local\Temp\asih.exe"
  2⤵
  PID:1308

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\asih.exe

Filesize
36KB

MD5
95d6ad58dbdb6e69811f5dc8431871d2

SHA1
25de3c6a1a8b13a13e639fe00c7571642f3d6130

SHA256
063d9fc4b2f35d15908c96142a214e910f55f9b7bbfb70044723baa808381f4d

SHA512
206de660d99a48f9c0b7388a3d9d50872de32af5fbeec329eb0450983df993c5de6e4e706a3dd1e0a1ee14bd625cd87860a11e044c0243ffef592a59c2a57812

Download Submit
C:\Users\Admin\AppData\Local\Temp\asih.exe

Filesize
36KB

MD5
95d6ad58dbdb6e69811f5dc8431871d2

SHA1
25de3c6a1a8b13a13e639fe00c7571642f3d6130

SHA256
063d9fc4b2f35d15908c96142a214e910f55f9b7bbfb70044723baa808381f4d

SHA512
206de660d99a48f9c0b7388a3d9d50872de32af5fbeec329eb0450983df993c5de6e4e706a3dd1e0a1ee14bd625cd87860a11e044c0243ffef592a59c2a57812

Download Submit
C:\Users\Admin\AppData\Local\Temp\asih.exe

Filesize
36KB

MD5
95d6ad58dbdb6e69811f5dc8431871d2

SHA1
25de3c6a1a8b13a13e639fe00c7571642f3d6130

SHA256
063d9fc4b2f35d15908c96142a214e910f55f9b7bbfb70044723baa808381f4d

SHA512
206de660d99a48f9c0b7388a3d9d50872de32af5fbeec329eb0450983df993c5de6e4e706a3dd1e0a1ee14bd625cd87860a11e044c0243ffef592a59c2a57812

Download Submit
memory/3808-133-0x0000000000500000-0x0000000000510000-memory.dmp

Filesize
64KB

Download
memory/3808-134-0x0000000002210000-0x0000000002216000-memory.dmp

Filesize
24KB

Download
memory/3808-135-0x0000000002210000-0x0000000002216000-memory.dmp

Filesize
24KB

Download
memory/3808-136-0x0000000002240000-0x0000000002246000-memory.dmp

Filesize
24KB

Download
memory/3808-150-0x0000000000500000-0x0000000000510000-memory.dmp

Filesize
64KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads