Overview

overview

7

Static

static

7

d2bdbe1217...fc.exe

windows7-x64

1

d2bdbe1217...fc.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    145s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-10-2023 09:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d2bdbe121774d186eaab95260beb2f8c5dc831464f1456cb57a7ce4a6239b8fc.exe

  • Size

    9.7MB

  • MD5

    3571a9e7cc832331f0f914f9b5e6de0c

  • SHA1

    5911e6337c71ce80bb9d898af53226ef56aea109

  • SHA256

    d2bdbe121774d186eaab95260beb2f8c5dc831464f1456cb57a7ce4a6239b8fc

  • SHA512

    f4579ce2959b8cf7072cd744178cdd422b0f1ca234c4906a2209467bd9e4a21fcad576a0d32bd090524687c6efd88ca2faba5ff8f77d60cf91902f2c10e50544

  • SSDEEP

    196608:8gE599pl+Ubj4m129RHc07RjS8OVsrvukPJs2MRyKKn4V5z5Emo:M99T+Ubjxv0x5eBkBJKy7n45zq

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d2bdbe121774d186eaab95260beb2f8c5dc831464f1456cb57a7ce4a6239b8fc.exe
    "C:\Users\Admin\AppData\Local\Temp\d2bdbe121774d186eaab95260beb2f8c5dc831464f1456cb57a7ce4a6239b8fc.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:3672

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3672-1-0x00007FF675750000-0x00007FF67610F000-memory.dmp

    Filesize

    9.7MB

    Download

  • memory/3672-0-0x00007FFE6F270000-0x00007FFE6F272000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3672-3-0x00007FFE6D5F0000-0x00007FFE6D5F2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3672-2-0x00007FFE6F280000-0x00007FFE6F282000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3672-4-0x00007FF675750000-0x00007FF67610F000-memory.dmp

    Filesize

    9.7MB

    Download

  • memory/3672-5-0x00007FFE6D600000-0x00007FFE6D602000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3672-6-0x00007FFE6CDA0000-0x00007FFE6CDA2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3672-7-0x00007FFE6CDB0000-0x00007FFE6CDB2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3672-10-0x000001CEF58D0000-0x000001CEF599D000-memory.dmp

    Filesize

    820KB

    Download

  • memory/3672-11-0x000001CEF59A0000-0x000001CEF5A23000-memory.dmp

    Filesize

    524KB

    Download

  • memory/3672-12-0x00007FF675750000-0x00007FF67610F000-memory.dmp

    Filesize

    9.7MB

    Download