Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231025-es
  • resource tags

    arch:x64arch:x86image:win7-20231025-eslocale:es-esos:windows7-x64systemwindows
  • submitted
    01/11/2023, 09:29

General

  • Target

    dump3.exe

  • Size

    1.8MB

  • MD5

    a18244784b8a9884e0906fabfd542d74

  • SHA1

    3ef2cb9e07e21a55dfcbebd1f9f6cf641519b008

  • SHA256

    07fc7072ab64146e0b7a09c7b2b116bc00ddd20c06bc28854406c86172cfc6f4

  • SHA512

    c7a2617e607c7420039215bd9c3603dd8d9c144261204413e711a875900ebc28a808d90d8621f59519688702326e7a8238042c72c5c3215836deb498b7a979f0

  • SSDEEP

    24576:SpLDZM8SQSQrm3cSowFe+2UN5fiskCeonWY48A+7CTfIQs3R2clwmBv/XTInYgse:0Vq+KccetUjICAtQ3wct6k+X6/O

Score
1/10

Malware Config

Signatures

  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

  • Enumerates system info in registry 2 TTPs 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dump3.exe
    "C:\Users\Admin\AppData\Local\Temp\dump3.exe"
    1⤵
    • Checks processor information in registry
    • Enumerates system info in registry
    PID:2336

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2336-0-0x0000000000220000-0x0000000000221000-memory.dmp

          Filesize

          4KB

        • memory/2336-1-0x0000000000400000-0x00000000007DA000-memory.dmp

          Filesize

          3.9MB

        • memory/2336-2-0x0000000000220000-0x0000000000221000-memory.dmp

          Filesize

          4KB

        • memory/2336-3-0x0000000000400000-0x00000000007DA000-memory.dmp

          Filesize

          3.9MB