Overview

overview

10

Static

static

3

【长安�...��.exe

windows7-x64

10

【长安�...��.exe

windows10-1703-x64

1

【长安�...��.exe

windows10-2004-x64

10

Resubmissions

13-08-2023 14:48

230813-r6nk8adb44 10

13-08-2023 14:42

230813-r3da3sdb24 3

Analysis

  • max time kernel
    1796s
  • max time network
    1802s
  • platform
    windows10-1703_x64
  • resource
    win10-20230703-en
  • resource tags

    arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system
  • submitted
    13-08-2023 14:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    【长安马自达服务部】张国子服务申请表.exe

  • Size

    7.4MB

  • MD5

    fe5041436b0b3794a38cc35a3decdd5a

  • SHA1

    ef586c4e74c90064d9512e36d082c82cc30c0494

  • SHA256

    6c7f8b417df33726f5660ddb3eb8f7fb4ea09b36db55fafbc72b54bdb57ff597

  • SHA512

    5cc5137710861949ab52fa6f580af2f1754c31af012aa8ad3e3f094164d6e00cb2257ff69c5820ad5a4b2b933acd111299087761b7d4d440ed942d589d0f491d

  • SSDEEP

    3072:wUGWFt7bjNfdC0vEpFyevAbGJ6Tftx3CLt/f:hFTfdC0sLjvMhat

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\【长安马自达服务部】张国子服务申请表.exe
    "C:\Users\Admin\AppData\Local\Temp\【长安马自达服务部】张国子服务申请表.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:4416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4416-120-0x0000000001200000-0x00000000012AE000-memory.dmp

    Filesize

    696KB

    Download

  • memory/4416-121-0x0000000001480000-0x00000000016C9000-memory.dmp

    Filesize

    2.3MB

    Download

  • memory/4416-122-0x00000000016D0000-0x000000000174E000-memory.dmp

    Filesize

    504KB

    Download

  • memory/4416-123-0x0000000001850000-0x00000000018F1000-memory.dmp

    Filesize

    644KB

    Download

  • memory/4416-124-0x0000000001900000-0x000000000199D000-memory.dmp

    Filesize

    628KB

    Download

  • memory/4416-125-0x0000000001AA0000-0x0000000001AF9000-memory.dmp

    Filesize

    356KB

    Download

  • memory/4416-127-0x0000000001B00000-0x0000000001B30000-memory.dmp

    Filesize

    192KB

    Download

  • memory/4416-126-0x0000000001B60000-0x0000000001C85000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/4416-402-0x00000000019A0000-0x00000000019E1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/4416-444-0x00000000019A0000-0x00000000019E1000-memory.dmp

    Filesize

    260KB

    Download