Overview

overview

7

Static

static

7

109CommandLib.dll

windows7-x64

1

109CommandLib.dll

windows10-2004-x64

1

HDSEvtMsg.dll

windows7-x64

1

HDSEvtMsg.dll

windows10-2004-x64

1

HDSentinel.exe

windows7-x64

7

HDSentinel.exe

windows10-2004-x64

1

HDSentinelTray.exe

windows7-x64

7

HDSentinelTray.exe

windows10-2004-x64

7

Storagetest.exe

windows7-x64

7

Storagetest.exe

windows10-2004-x64

7

afaapi.dll

windows7-x64

1

afaapi.dll

windows10-2004-x64

1

bc_vbdll.dll

windows7-x64

7

bc_vbdll.dll

windows10-2004-x64

7

de.chm

windows7-x64

1

de.chm

windows10-2004-x64

1

deta.exe

windows7-x64

7

deta.exe

windows10-2004-x64

7

deta1.exe

windows7-x64

7

deta1.exe

windows10-2004-x64

7

detat.exe

windows7-x64

1

detat.exe

windows10-2004-x64

1

detect.exe

windows7-x64

7

detect.exe

windows10-2004-x64

7

dethp.exe

windows7-x64

7

dethp.exe

windows10-2004-x64

7

dethp2.exe

windows7-x64

1

dethp2.exe

windows10-2004-x64

1

dethpt.exe

windows7-x64

7

dethpt.exe

windows10-2004-x64

7

detjm.exe

windows7-x64

1

detjm.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2023, 08:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    deta1.exe

  • Size

    23KB

  • MD5

    b15b1d7bcf5255b013c8493f44661d1a

  • SHA1

    620e88e23daff2d12b481b0c18a00bf4788ab547

  • SHA256

    f546140ffb9247af434abe0e8949a9c63e043484beabf171bd802b7005b4a216

  • SHA512

    c41d085e18ad7cca311df03749a8bf51b00af01e005d4a011bc0168311c0338d1985e18858aba579a23ca5293cb49dcac967b4452511dadb6f7bd2f83e8a2ff2

  • SSDEEP

    384:m8iW2adkCPxGN2KxPBGpCxhCxXn8+g+D0Gt8iiyoGNGb5hiX8ZpHt9HX:mVW6MGNiEmmeV8iiyuriXiR/X

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\deta1.exe
    "C:\Users\Admin\AppData\Local\Temp\deta1.exe"
    1⤵
      PID:112

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/112-0-0x0000000000400000-0x0000000000409000-memory.dmp

      Filesize

      36KB

      Download

    • memory/112-1-0x0000000075070000-0x0000000075127000-memory.dmp

      Filesize

      732KB

      Download

    • memory/112-3-0x0000000075070000-0x0000000075127000-memory.dmp

      Filesize

      732KB

      Download

    • memory/112-2-0x0000000000400000-0x0000000000409000-memory.dmp

      Filesize

      36KB

      Download