Overview

overview

3

Static

static

3

2023-08-25...JC.exe

windows7-x64

1

2023-08-25...JC.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    181s
  • max time network
    189s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/10/2023, 23:31

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2023-08-25_884fce6991838d2999bf4efc54f8bb5e_magniber_revil_JC.exe

  • Size

    5.2MB

  • MD5

    884fce6991838d2999bf4efc54f8bb5e

  • SHA1

    5cd0cdcf6695f3e6e0770d015410c7a220707ae3

  • SHA256

    0462bb0ae1ff30a682a44932f523e0c274748bc3878941e759da654a9883498c

  • SHA512

    31d1f48f936323fc7f0e759ddfc2a15ebe9e66e8dbb0fb9169f305d43080788b8c12a5a9c4ec935fd89877d844796eb3091090850408c0d8d1590c9c1bec4954

  • SSDEEP

    98304:UGcR6vnpr1ZMuypHBk9WmTRUdOofGOeWo/b76gF3oz+c7G5he2u8mY9z0rm:UGSCnv7TReOp/b76C678JmY9zem

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2023-08-25_884fce6991838d2999bf4efc54f8bb5e_magniber_revil_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\2023-08-25_884fce6991838d2999bf4efc54f8bb5e_magniber_revil_JC.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3320

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          665B

          MD5

          bc2bd92a7d4ddc83ef1ba9e95f0480b5

          SHA1

          32fed49647f4472c9c5a7c7db73d9ad7a2cf5300

          SHA256

          d2919ed86f48b00d2b916f7b51e6a0d1df95588b9a6a243a576c85e40943466b

          SHA512

          a0a53bc6de73014b855b32321e4bad28927b1618215191f4781e71fc48fca92d35ac7cbf91d7fcc31acb9e8268fb2ecee7f068d29b91f210cce72ea3ed0efd8d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          6KB

          MD5

          420831ed778ce2189c789bb163111497

          SHA1

          baca3fd93b4a3cb5af8ede5513381456a8f35a29

          SHA256

          8ed0a332840204a3f700424a0d2ae755deae0a2d951258353d39464434600a19

          SHA512

          9359aa8be19a9fabdbdc021d56420c5abc60b17adf3b6894866b5d8b2ceecc226e06a69ce5db92153444d6034be4e3cc882ea4929e14304f6685649cad021a2c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          6KB

          MD5

          420831ed778ce2189c789bb163111497

          SHA1

          baca3fd93b4a3cb5af8ede5513381456a8f35a29

          SHA256

          8ed0a332840204a3f700424a0d2ae755deae0a2d951258353d39464434600a19

          SHA512

          9359aa8be19a9fabdbdc021d56420c5abc60b17adf3b6894866b5d8b2ceecc226e06a69ce5db92153444d6034be4e3cc882ea4929e14304f6685649cad021a2c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          277B

          MD5

          e2859cc1eda45da001acbe7d6108127e

          SHA1

          3380140a34f5e2b4697f8624a29cda657aea6c24

          SHA256

          428c9ea3c31208dcb9a0f7b5998ca77760f6c85bafac18252fe859db793bb1a8

          SHA512

          27388209a93e7770dfcd337cf96fa00aaa494a0da25be4c62af14e30922b099db70be688a6f10622e5f5ddda0fc578e6a39d39c73071cfb44fe32c70ffdc06ec

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          6KB

          MD5

          420831ed778ce2189c789bb163111497

          SHA1

          baca3fd93b4a3cb5af8ede5513381456a8f35a29

          SHA256

          8ed0a332840204a3f700424a0d2ae755deae0a2d951258353d39464434600a19

          SHA512

          9359aa8be19a9fabdbdc021d56420c5abc60b17adf3b6894866b5d8b2ceecc226e06a69ce5db92153444d6034be4e3cc882ea4929e14304f6685649cad021a2c

          Download Submit