Overview

overview

7

Static

static

3

42e76f9d7b...83.exe

windows7-x64

7

42e76f9d7b...83.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    143s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 23:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42e76f9d7bc0622f86d65905f19c2883.exe

  • Size

    303KB

  • MD5

    42e76f9d7bc0622f86d65905f19c2883

  • SHA1

    ec77fcfd0fe916eb604514de17fec05f66cbc87e

  • SHA256

    136ecd4fb467eea6a39b7acbcd11ddfebda319588fc63282e87a28f915c6b44e

  • SHA512

    74ec7a1d31032b764f13fc64b6d92af71b381fbf54ac4ff99a275fe999094dd4ae95b044d20540873f5beca41c4a6a9791129312c8475c03d1183feb143761b2

  • SSDEEP

    6144:/r4D9uEo2S1YnQmCX492DkwNP3qpYFnz0pAXEei4XT9oTioLpgkq3WuR:/r45u6/eIo4WzxwrLpgI6

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\42e76f9d7bc0622f86d65905f19c2883.exe
    "C:\Users\Admin\AppData\Local\Temp\42e76f9d7bc0622f86d65905f19c2883.exe"
    1⤵
    • Loads dropped DLL
    PID:3824

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\ProgramData\InstallMate\FD5C588C\cfg\1.ini
    Filesize

    40KB

    MD5

    f2b28b165747468c88ef4e1df60a6601

    SHA1

    0515cb22048f232872251630c28b97bcb4f18dda

    SHA256

    be70bd6ea6c6c0779570a02324dc1fb8847a6202faf35efb9a189ef2f19138c4

    SHA512

    9b0abea9158437a8c5ff422b5debeaf7600611efc4b845dffb3098884d3a090ecf3449b66b4051a9e1319141096a5542f0b6ba9454960561bff85be0a3f303ed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tsu3771C79B.dll
    Filesize

    41KB

    MD5

    5db28a227881ee08a39991ae6249798a

    SHA1

    865a576021d34de18913976ab654f854a787cdbc

    SHA256

    a2aab793148bd55d675ce10a488d8827dc763cdba9dc8162096e619f9147437a

    SHA512

    128da9c087809fb917940c4355ec90c10ca464050f176a59bbc71b9401597b347db6b3a2a93e077c07cb20fea28cbc580de46f74bae4b37565848ef4e6ab424c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\{24F78E6F-631C-4DC5-AF2E-2B3EFF14AC99}\Custom.dll
    Filesize

    63KB

    MD5

    fb2321c4d34033bf5ca3ccf8f14921ba

    SHA1

    e55c63d6690c4786e5bbe98065ed3ccc654ed5e1

    SHA256

    3d6536036244431d9f1510a03d95d8cf96314fdbed99a2f916a9f16edd658292

    SHA512

    44707deed812a166d9d19f1cfed7080e4a35e71d9beef569824b0e8fa929eb36fe52f28b36647866182508ea4f72cb6adb9718e65c18c06989e9cfa7c8960c8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\{24F78E6F-631C-4DC5-AF2E-2B3EFF14AC99}\_Setup.dll
    Filesize

    162KB

    MD5

    52cbcb3241324aa782432ad280b402c7

    SHA1

    de387beda2f14a420ffd32faa64c2c92d5682b5e

    SHA256

    5acef4079f05c6119e939fcb425b163940daa9f4e52cec0e3f68f62dbda02868

    SHA512

    cdbcb3d60c8766d0c0bc4c16f9f504135c98efc29f55590d730fde35044240c476243bd65c5c0393142b1fe0c78d3e9576eb5fb137dd72ecc6c0eea63f984357

    Download Submit