Overview

overview

5

Static

static

3

354e627ca5...71.exe

windows7-x64

5

354e627ca5...71.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    118s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    07/10/2023, 12:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    354e627ca5148cc5a9fbafb5cdb4b8f23c4e5f0edf4a056d3ce601213751ae71.exe

  • Size

    5.8MB

  • MD5

    8041dbc892a19938c21cb139ee1b5d57

  • SHA1

    57710e0159e54f1ebaca52bbbe3977b960e07e1a

  • SHA256

    354e627ca5148cc5a9fbafb5cdb4b8f23c4e5f0edf4a056d3ce601213751ae71

  • SHA512

    1f5ba9c1cbd624a713c75536b2ae3cad5983a3c93f1ca4dc49d486ba5a8944cea217dae0257921428f55574e66af49d6f56d81036a418692df4ed9766c0a572c

  • SSDEEP

    98304:9fpyahrjlseOjUvvukEAIkKj3MUDAQ87sb+mpAzC3nlzlxgs3VbO0tAF3dYr:LblsGvvnmPE7FaqCX1csl60tAlq

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\354e627ca5148cc5a9fbafb5cdb4b8f23c4e5f0edf4a056d3ce601213751ae71.exe
    "C:\Users\Admin\AppData\Local\Temp\354e627ca5148cc5a9fbafb5cdb4b8f23c4e5f0edf4a056d3ce601213751ae71.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3020-0-0x0000000000400000-0x0000000000DFA000-memory.dmp

    Filesize

    10.0MB

    Download

  • memory/3020-1-0x0000000002A70000-0x0000000002B52000-memory.dmp

    Filesize

    904KB

    Download

  • memory/3020-2-0x0000000000400000-0x0000000000DFA000-memory.dmp

    Filesize

    10.0MB

    Download

  • memory/3020-3-0x0000000002A70000-0x0000000002B52000-memory.dmp

    Filesize

    904KB

    Download