Overview

overview

10

Static

static

10

up.zip

windows7-x64

1

up.zip

windows10-2004-x64

1

Cloakedbgf...so.iso

windows7-x64

3

Cloakedbgf...so.iso

windows10-2004-x64

3

Information.lnk

windows7-x64

3

Information.lnk

windows10-2004-x64

6

_

windows7-x64

1

_

windows10-2004-x64

1

agenda.exe

windows7-x64

1

agenda.exe

windows10-2004-x64

6

vcruntime140.dll

windows7-x64

1

vcruntime140.dll

windows10-2004-x64

8

vctool140.dll

windows7-x64

1

vctool140.dll

windows10-2004-x64

8

Guloaderbg...so.iso

windows7-x64

3

Guloaderbg...so.iso

windows10-2004-x64

3

Iisbgfhaci...ll.dll

windows7-x64

3

Iisbgfhaci...ll.dll

windows10-2004-x64

3

Iranbggaia...xe.exe

windows7-x64

7

Iranbggaia...xe.exe

windows10-2004-x64

7

Knotweedbg...ll.dll

windows7-x64

1

Knotweedbg...ll.dll

windows10-2004-x64

1

Magicratbg...xe.exe

windows7-x64

10

Magicratbg...xe.exe

windows10-2004-x64

10

Newcoppers...xe.exe

windows7-x64

4

Newcoppers...xe.exe

windows10-2004-x64

4

Newlogfors...xe.exe

windows7-x64

4

Newlogfors...xe.exe

windows10-2004-x64

4

Purecrypte...xe.dll

windows7-x64

1

Purecrypte...xe.dll

windows10-2004-x64

1

Purecrypte...xe.dll

windows7-x64

1

Purecrypte...xe.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    01-08-2023 19:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Iranbggaiajfbi13_browsingExe.exe

  • Size

    23KB

  • MD5

    08dc5c2af21ecee6f2b25ebdd02a9079

  • SHA1

    dc2ae40aa0ef8ed3eb0cee522f1116fe0f1f7acc

  • SHA256

    cffcae5f9936636f8c3835a038b95ab44533be813290d67b83883f6356da8359

  • SHA512

    98c80eb8de95155354e1c30db858ad59f14182c89c3fa753a0221411ee061d328c7dfeb33b170795a16cf5f1c80272b67111fc05e4188d22e24bb7af968e1745

  • SSDEEP

    384:rfRa1oAVJogEHIMBBZdgGBSIX35/EnzVev+251Wy:Fa1DoPgGgIH5/IVGp51W

Score
7/10
spywarestealer

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Iranbggaiajfbi13_browsingExe.exe
    "C:\Users\Admin\AppData\Local\Temp\Iranbggaiajfbi13_browsingExe.exe"
    1⤵
      PID:2612

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2612-53-0x0000000000FC0000-0x0000000000FCC000-memory.dmp

      Filesize

      48KB

      Download

    • memory/2612-54-0x000007FEF5E20000-0x000007FEF67BD000-memory.dmp

      Filesize

      9.6MB

      Download

    • memory/2612-55-0x0000000000230000-0x00000000002B0000-memory.dmp

      Filesize

      512KB

      Download

    • memory/2612-56-0x000007FEF5E20000-0x000007FEF67BD000-memory.dmp

      Filesize

      9.6MB

      Download

    • memory/2612-57-0x000007FEF5E20000-0x000007FEF67BD000-memory.dmp

      Filesize

      9.6MB

      Download

    • memory/2612-58-0x0000000000230000-0x00000000002B0000-memory.dmp

      Filesize

      512KB

      Download