Overview

overview

6

Static

static

3

a4ce6ffc22...JC.exe

windows7-x64

6

a4ce6ffc22...JC.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    147s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-09-2023 13:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a4ce6ffc22b7d496df3149365e0788cb_JC.exe

  • Size

    762KB

  • MD5

    a4ce6ffc22b7d496df3149365e0788cb

  • SHA1

    9871af54150d18d1fe347632e1e3fc1c1dbf4020

  • SHA256

    9f930f5bf74c0314a12d3ee8c06dfad386f197c43bdd6223641fcb6240f61906

  • SHA512

    be97650e8b7b1ff1c3a8e3a96161d4269087b4a42df081810afe129c90399be03492160096502075b3e977d4657155e908b895383b06398bad9e2332c9be2310

  • SSDEEP

    3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1Dzb/:Hha8iAx+1zwjmHd6vB/jO11zeuIST0

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 3 IoCs
    persistence
  • Drops file in System32 directory 6 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a4ce6ffc22b7d496df3149365e0788cb_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\a4ce6ffc22b7d496df3149365e0788cb_JC.exe"
    1⤵
    • Adds Run key to start application
    • Drops file in System32 directory
    PID:3596

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\AVSCANNER.EXE
    Filesize

    772KB

    MD5

    4125c3771fa180c4186cfe5101feb9d9

    SHA1

    c83b93820cfb3ab6d8753420804b7fb1aa1288cb

    SHA256

    5b0755707e19dab923050d98f426ac1b16e4bf5d193a74b15708658492925d00

    SHA512

    e0b52b4a6cf54b9e8bbcd4ba8ba44e75a5bd332ba93e758d99b01c4df5d7bf83b76f24ef967e1856406a810f0403edffe762b68bd7be6a32f54a23b3ee4d3e9e

    Download Submit

  • memory/3596-0-0x0000000000400000-0x000000000044C000-memory.dmp

    Filesize

    304KB

    Download

  • memory/3596-7-0x0000000000400000-0x000000000044C000-memory.dmp

    Filesize

    304KB

    Download