Overview

overview

5

Static

static

3

dc1dc0bdff...3d.exe

windows7-x64

5

dc1dc0bdff...3d.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    139s
  • max time network
    162s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-11-2023 21:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dc1dc0bdff98fe6f8ae46f8155d1a9fa7d34930fd7a1d78fe9797ecc09e4d83d.exe

  • Size

    2.8MB

  • MD5

    626734c19ba4f382203df160440a415c

  • SHA1

    4f089f4f1348070161f9cd32cb8106fd3d582e71

  • SHA256

    dc1dc0bdff98fe6f8ae46f8155d1a9fa7d34930fd7a1d78fe9797ecc09e4d83d

  • SHA512

    a0270ed242379cd476c53957bcfa3414a6819806035ef7c6b1ee5fb869a37f4516467ff89836e8f55a4356af678147e3f066f5a7b0279fff0f6a8887de008096

  • SSDEEP

    49152:B2ERlJ2uwMUkURc8h9S78FdBCpUedcF3dtaSCrL5nJJJJJJJJJJJJJJJJJJJJJJI:rRlohMxWc8W78FHCpFy3dYr1JJJJJJJa

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dc1dc0bdff98fe6f8ae46f8155d1a9fa7d34930fd7a1d78fe9797ecc09e4d83d.exe
    "C:\Users\Admin\AppData\Local\Temp\dc1dc0bdff98fe6f8ae46f8155d1a9fa7d34930fd7a1d78fe9797ecc09e4d83d.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    PID:2792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2792-0-0x0000000000400000-0x00000000007DF000-memory.dmp

    Filesize

    3.9MB

    Download

  • memory/2792-1-0x0000000002800000-0x00000000028E2000-memory.dmp

    Filesize

    904KB

    Download

  • memory/2792-2-0x0000000000400000-0x00000000007DF000-memory.dmp

    Filesize

    3.9MB

    Download

  • memory/2792-3-0x0000000002800000-0x00000000028E2000-memory.dmp

    Filesize

    904KB

    Download