Overview

overview

10

Static

static

10

System.Settings.exe

windows7-x64

7

System.Settings.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    125s
  • max time network
    175s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/10/2023, 06:21

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    System.Settings.exe

  • Size

    513.3MB

  • MD5

    09bf2b43f546db62365e232a91ce972d

  • SHA1

    5a85e7a702830e25b019deb18334efb57aae925d

  • SHA256

    58a2e59eb1c8d7d83fc6bf6e15fbe3919794d005014a2208bf5842a05146f2e3

  • SHA512

    be92e830dd83ea664c3ce7a5d39531e1d7c33a7a5bc96c807659b8ce6d43922620df4d499a408a57ed36989c01edcde9e725f1e5d5d91e4e752e4993fbea5dc7

  • SSDEEP

    6291456:VRu3+R48+FkPWAOfraP6dsm/s12VOA6z/s8WAOfraPnWAOfraPXWAOfraP+WAOfe:VQ8+FdTy2VOA6z/JCx2vryR

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\System.Settings.exe
    "C:\Users\Admin\AppData\Local\Temp\System.Settings.exe"
    1⤵
    • Loads dropped DLL
    PID:4340

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\.net\System.Settings\q8Ifpa5dIWPG3e42kXiksj4Ob39H0Ms=\clrjit.dll
          Filesize

          1.0MB

          MD5

          e127d23181160e02391e628192b1d08a

          SHA1

          642c16276a9dc0c216e677be97df4e4aeb2836a6

          SHA256

          ce9037b6998a8171cb53cfa3725cc9bddd95ceba7fe4f9fd9fb43ac667ce4601

          SHA512

          7a557a26eb0442d79da66b34ff70c37d4e5d26c757493c58127265876c9c2d2da1e6cb9b70680ee4dbf3773dcb55b575010fc72b5528263f957b20f867d71465

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\.net\System.Settings\q8Ifpa5dIWPG3e42kXiksj4Ob39H0Ms=\coreclr.dll
          Filesize

          4.0MB

          MD5

          99004b84b758edc90f90671221152667

          SHA1

          9a22738517dac9fc717d6f9324a24aeee6dc93e6

          SHA256

          ab0ee337d10c8225134603f1dc5f70631fc7a3dc49500e254efca7c60b145f67

          SHA512

          662c00d3bcf76eb8fb603a681ca029824ca1bb65064790da405e95db6c363ebe9cf897f8420b5f79b6653eed17aebcf81e4dfe81652f0dbe674ba4fd54c9adb0

          Download Submit

        • memory/4340-48-0x0000000006C70000-0x0000000006C7C000-memory.dmp

          Filesize

          48KB

          Download

        • memory/4340-51-0x0000000006C70000-0x0000000006C7C000-memory.dmp

          Filesize

          48KB

          Download

        • memory/4340-21-0x0000000008AB0000-0x000000000A9BE000-memory.dmp

          Filesize

          31.1MB

          Download

        • memory/4340-24-0x0000000008AB0000-0x000000000A9BE000-memory.dmp

          Filesize

          31.1MB

          Download

        • memory/4340-25-0x0000000006B30000-0x0000000006B3A000-memory.dmp

          Filesize

          40KB

          Download

        • memory/4340-27-0x0000000006BB0000-0x0000000006BC3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/4340-30-0x0000000006BB0000-0x0000000006BC3000-memory.dmp

          Filesize

          76KB

          Download

        • memory/4340-31-0x0000000006BA0000-0x0000000006BA9000-memory.dmp

          Filesize

          36KB

          Download

        • memory/4340-52-0x0000000006CB0000-0x0000000006CCC000-memory.dmp

          Filesize

          112KB

          Download

        • memory/4340-35-0x0000000010180000-0x00000000103E0000-memory.dmp

          Filesize

          2.4MB

          Download

        • memory/4340-38-0x0000000010640000-0x00000000111B7000-memory.dmp

          Filesize

          11.5MB

          Download

        • memory/4340-41-0x0000000006C20000-0x0000000006C2E000-memory.dmp

          Filesize

          56KB

          Download

        • memory/4340-44-0x0000000006C20000-0x0000000006C2E000-memory.dmp

          Filesize

          56KB

          Download

        • memory/4340-45-0x0000000010080000-0x0000000010126000-memory.dmp

          Filesize

          664KB

          Download

        • memory/4340-15-0x0000000074FD0000-0x00000000753E9000-memory.dmp

          Filesize

          4.1MB

          Download

        • memory/4340-14-0x0000000031000000-0x000000003182F000-memory.dmp

          Filesize

          8.2MB

          Download

        • memory/4340-34-0x0000000006BA0000-0x0000000006BA9000-memory.dmp

          Filesize

          36KB

          Download

        • memory/4340-55-0x0000000006CB0000-0x0000000006CCC000-memory.dmp

          Filesize

          112KB

          Download

        • memory/4340-56-0x0000000006CD0000-0x0000000006CE4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/4340-59-0x0000000006CD0000-0x0000000006CE4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/4340-60-0x00000000070D0000-0x00000000074A2000-memory.dmp

          Filesize

          3.8MB

          Download

        • memory/4340-63-0x00000000070D0000-0x00000000074A2000-memory.dmp

          Filesize

          3.8MB

          Download

        • memory/4340-64-0x0000000006F70000-0x0000000006F74000-memory.dmp

          Filesize

          16KB

          Download

        • memory/4340-66-0x0000000007BF0000-0x0000000008328000-memory.dmp

          Filesize

          7.2MB

          Download

        • memory/4340-69-0x0000000007BF0000-0x0000000008328000-memory.dmp

          Filesize

          7.2MB

          Download

        • memory/4340-70-0x0000000007040000-0x0000000007052000-memory.dmp

          Filesize

          72KB

          Download

        • memory/4340-73-0x0000000007040000-0x0000000007052000-memory.dmp

          Filesize

          72KB

          Download

        • memory/4340-74-0x0000000007990000-0x0000000007B25000-memory.dmp

          Filesize

          1.6MB

          Download

        • memory/4340-77-0x0000000007990000-0x0000000007B25000-memory.dmp

          Filesize

          1.6MB

          Download

        • memory/4340-78-0x0000000010020000-0x000000001003C000-memory.dmp

          Filesize

          112KB

          Download

        • memory/4340-81-0x0000000007820000-0x000000000783C000-memory.dmp

          Filesize

          112KB

          Download

        • memory/4340-108-0x0000000074FD0000-0x00000000753E9000-memory.dmp

          Filesize

          4.1MB

          Download