Overview

overview

7

Static

static

3

ab57478b46...d7.exe

windows7-x64

1

ab57478b46...d7.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    23-11-2023 14:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab57478b4683a18f26da1211eb0ad972044213db15b73149534e419c30f206d7.exe

  • Size

    4.4MB

  • MD5

    002f4f0eea82492c9074133a990b1941

  • SHA1

    119b54504cdaf6a2195476779caa8811b590e01c

  • SHA256

    ab57478b4683a18f26da1211eb0ad972044213db15b73149534e419c30f206d7

  • SHA512

    3355c049e4b27a62b9bfa60f46f64b824af75ec1982dc5b135ee1165b41f5de330a513029df026e230e1df9684b0288b2dcd7298c2ed005d4eed4c9a8ee827e8

  • SSDEEP

    98304:+PmTVNyqOb2lP8ssYoJumWsM0r1QnKOB50Fe0:+PaNDtoBAAo0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 7 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ab57478b4683a18f26da1211eb0ad972044213db15b73149534e419c30f206d7.exe
    "C:\Users\Admin\AppData\Local\Temp\ab57478b4683a18f26da1211eb0ad972044213db15b73149534e419c30f206d7.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\array-slice\LICENSE
    Filesize

    1KB

    MD5

    3d83ea4c8ec9b31d9ff2c82fa29beabb

    SHA1

    d0ee9aa349ad4a47b319f691d67023e255ef81ba

    SHA256

    4cd903859549d4b20b571041f96dfae1136ed079c476126268f9d7cc1b611150

    SHA512

    50e3b69c79fd0c09a3cb3a70c15d1272eff48decc192a18ba0a64d5490a7ed957e97b029621a03388fce9428764d1eadab0b6b10f07feda8518aea651099cc5d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\cross-env\node_modules\path-key\license
    Filesize

    1KB

    MD5

    915042b5df33c31a6db2b37eadaa00e3

    SHA1

    5aaf48196ddd4d007a3067aa7f30303ca8e4b29c

    SHA256

    48da2f39e100d4085767e94966b43f4fa95ff6a0698fba57ed460914e35f94a0

    SHA512

    9c8b2def76ae5ffe4d636166bf9635d7abd69cdac4bf819a2145f7969646d39ae95c96364bc117f9fa544b98518c294233455d4f665af430c75d70798dd4ab13

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\decompress-tar\license
    Filesize

    1KB

    MD5

    05240cd20679544d6e90fcff746425bc

    SHA1

    db85a00ab8daaf90050b20b30266c92a58cb71f2

    SHA256

    69dee148a2cc470554dfa7142e830662062394d0fe67cddd379aba90dc60d6b3

    SHA512

    4109a4e0cfe37c1732ca099caa4bd1106c4e298a9f1dd50828cef8067435cc668dab44be7d4a4da3fbafdda5aeee22ae5c42416cf79d0996089783cb13b2ff4a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\decompress-tar\node_modules\file-type\license
    Filesize

    1KB

    MD5

    a12ebca0510a773644101a99a867d210

    SHA1

    0c94f137f6e0536db8cb2622a9dc84253b91b90c

    SHA256

    6fb9754611c20f6649f68805e8c990e83261f29316e29de9e6cedae607b8634c

    SHA512

    ae79e7a4209a451aef6b78f7b0b88170e7a22335126ac345522bf4eafe0818da5865aae1507c5dc0224ef854548c721df9a84371822f36d50cbcd97fa946eee9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\fs-minipass\LICENSE
    Filesize

    765B

    MD5

    82703a69f6d7411dde679954c2fd9dca

    SHA1

    bb408e929caeb1731945b2ba54bc337edb87cc66

    SHA256

    4ec3d4c66cd87f5c8d8ad911b10f99bf27cb00cdfcff82621956e379186b016b

    SHA512

    3fa748e59fb3af0c5293530844faa9606d9271836489d2c8013417779d10cc180187f5e670477f9ec77d341e0ef64eab7dcfb876c6390f027bc6f869a12d0f46

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\is-core-module\.nycrc
    Filesize

    139B

    MD5

    d0104f79f0b4f03bbcd3b287fa04cf8c

    SHA1

    54f9d7adf8943cb07f821435bb269eb4ba40ccc2

    SHA256

    997785c50b0773e5e18bf15550fbf57823c634fefe623cd37b3c83696402ad0a

    SHA512

    daf9b5445cfc02397f398adfa0258f2489b70699dfec6ca7e5b85afe5671fdcabe59edee332f718f5e5778feb1e301778dffe93bb28c1c0914f669659bad39c6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\39383C9D8T9D1301\resources\app\node_modules\tunnel-agent\LICENSE
    Filesize

    8KB

    MD5

    f3f8ead5440d1c311b45be065d135d90

    SHA1

    05979f0750cf5c2a17bd3aa12450849c151d8b7c

    SHA256

    d446a8c73d7bbe4872d6524b15ae206f9a2d7eb53f8c9cb6e6c893a43acc5276

    SHA512

    d52ead0329e9223dce3d54f83c9e8caab7974355c248e2e85a1a8aa3198af402507761c22bad31307ae3bda06528ed0b3487e9ac9f6a6c3c413e09a5acac915d

    Download Submit

  • memory/2196-0-0x00000000005C0000-0x00000000005C2000-memory.dmp

    Filesize

    8KB

    Download