Overview

overview

7

Static

static

3

Five Night... 1.exe

windows7-x64

7

Five Night... 1.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    2s
  • max time network
    21s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    13/11/2023, 22:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Five Nights at Freddy´s 1.exe

  • Size

    285.6MB

  • MD5

    0cb10cdccb8d2c83382b6f9f68bd3b90

  • SHA1

    52461876801eeb81736556469e9fa6872cb98787

  • SHA256

    8b171191780e2145d10b3b3f8d38d835ea6104f9c406a5a6fc04f0f642744c96

  • SHA512

    792a7d1457ed0adf7fba6bd344a5686efc4d5a7bcaed613d5b6aaa61d686522cea1b4c900593efa1d71fdf4171c49a3ee75d2a21f3f34fdf0fa48b6903c85c7b

  • SSDEEP

    6291456:S7JlO4uB9m+Zi5vfUsQnNPDG0i0Wx86paauh8+dGk6+lcFq+x552YuXg4DnjmFd4:S7JlYB9ROvQ+x58g4LoN3cmxa

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Five Nights at Freddy´s 1.exe
    "C:\Users\Admin\AppData\Local\Temp\Five Nights at Freddy´s 1.exe"
    1⤵
    • Loads dropped DLL
    PID:1456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\cctrans.dll
    Filesize

    347KB

    MD5

    21e093d52a3afe8ed5532fcaa189c067

    SHA1

    8aa7bcb26e3064cd4d1172090ff00d083ee19cc4

    SHA256

    9b834b5d26983451ef3a11c8c2a715724daa188fbd28597081ecb1e9ed672f87

    SHA512

    b4c2205c234e8ed4973fca9c64c0ec11753eb200c1d2eb3c66b9f4509426c8774f14ae1271583e0eaff268eae9c8375c5993af107e4db8d7c87b817bd1ccd9e8

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\kcclock.mfx
    Filesize

    108KB

    MD5

    3aa5cbe7b31e550511ce011457c44790

    SHA1

    93c22c4f9ddb40d72865ec5dc169cef3feb3e337

    SHA256

    58588b5e12d0c5629ee481ad7ed9e8b4d6798cfa83004aecaa600a6924bc97e6

    SHA512

    c29a54368badaae841eb27dfb3a9ca74571828618888021c45949d1d999242e07bf240b08f602dfacded4c82e12fb6a13f501a09efe68fd5a310541099fa4a42

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\kcini.mfx
    Filesize

    330KB

    MD5

    a6ad14845999c5aa7adf2911671a7c5b

    SHA1

    98dfd5a9584d1c1b330c2c104c1779bd55ded211

    SHA256

    5af175ffb932fb653873dad095dd40f2ab8d3fb56f287213c21bb68652ddad2d

    SHA512

    32bb59826b82d47ec420ac2532e1387a85422d2f0ce5370ad2c95b914a7615d3b122dbf4dd045105eb8ffea49324dac57659f0e5f2500b4d0eb75047cb36dfd8

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\mmf2d3d11.dll
    Filesize

    541KB

    MD5

    839633898178f35f6de0b385b7de0ec7

    SHA1

    5396e52c45954f0953cc8cf2095b122f7353180e

    SHA256

    5f6563d6bf2f3ceab8b2ca2c15ba4f7fe882a82c1f72b10041b5692c6515a53a

    SHA512

    b0ed4fce2815dcb783e0b9a786178b337d215e6a4d16df1ddb3c28ccdba13081fee1976669d9f99505cf31b8f1e8d5584fd1aa9732e1add38217222726c76eb8

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\mmf2d3d9.dll
    Filesize

    1.5MB

    MD5

    c85bcc9f3049b57aa8ccbb290342ff14

    SHA1

    38f5b81a540f1c995ff8d949702440b70921acc5

    SHA256

    bddda991185a9e83b9855a109f2fcfa78cd2d5402e9db344c6ec77f6ce69a0c5

    SHA512

    5097f9d78ddc651aabf41f217f622ee656a1c6de6a9b339354525293102cf631cca2b7babaf991e99e49efe4d1bb6792c8a7a11f82e4ae2081c3961eb9b5afe7

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\mmfs2.dll
    Filesize

    768KB

    MD5

    200520e6e8b4d675b77971dfa9fb91b3

    SHA1

    0c583bf4c3eda9c955fd0d0d3ba7fdc62a43bf07

    SHA256

    763ef4484ba9b9e10e19268c045732515f0ac143cf075e6d1ea1f5adcc77633b

    SHA512

    8b7bb334b6bd83ae43e5a4fe32a92b38b1edd2c292c4a540a54c2ee16092eb30108524c1c363508f7c62617bb224d9b447f07cda97ab7de01688acbfbacec51b

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\mp3flt.sft
    Filesize

    24KB

    MD5

    5bebc3ae0122702b89f9262888d3a393

    SHA1

    064731c0f1d493b5b82921fa78f06e3d1db95284

    SHA256

    81c9a9459a8e124793addf142cd513945d6fe600e1d67f74897898d7570e56b2

    SHA512

    c10cb520c2c4a9fe7c371f17ce7f86f138db247468ab1e465dafd7abd294c2beb13cf3a2595b4c8c820d911d8b70842c8f4e45398693c4f0454f973bd58a10a1

    Download Submit

  • \Users\Admin\AppData\Local\Temp\mrt88FE.tmp\waveflt.sft
    Filesize

    8KB

    MD5

    57ea61dd14314ef155e80c6a0be8a664

    SHA1

    963b0ef2fe976ff77044a821fe1e29be4a8cf8a7

    SHA256

    92a5053cf5973a6aa228c738d55387f12f1dfa8a837d7b938c60f05b6b56b3ad

    SHA512

    cc23cb30d76d22500c3ed7ce9ee0388588309d0779441b95559fce25a42f1eff52ca285c347655f8b33c15b75f9d2067738a151f81f605d3b563799a3a06c9a9

    Download Submit

  • memory/1456-44-0x00000000FFF80000-0x00000000FFF90000-memory.dmp

    Filesize

    64KB

    Download