Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 05:18

General

  • Target

    0766c4c26fcb1f4769b2a7a3aeb501b4.exe

  • Size

    140KB

  • MD5

    0766c4c26fcb1f4769b2a7a3aeb501b4

  • SHA1

    d8e00b4b6b819731841f63ad19e397fb0948f84e

  • SHA256

    156c3a74b50681eace55a55f3736b303ddac90b16ac7761d916940f5747a5a81

  • SHA512

    d8788d344bbb7df13fe5b67c7ee9722eb11cb0aed7f22c04bea6b8cd66928215ab083fab824f6148cc3b67412dfc94f3389d293960fa127606445d709e19781f

  • SSDEEP

    1536:aaqR4ON/tQi99rtuUXKIs4/18bz/uf3YTpIPzo6TtxY9UzGbreOTeY+TGx7Wac/I:a2i99xNKkOzyIT2PzfTyRSO5+TyiacA

Score
6/10

Malware Config

Signatures

  • Drops desktop.ini file(s) 6 IoCs
  • Drops file in Program Files directory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0766c4c26fcb1f4769b2a7a3aeb501b4.exe
    "C:\Users\Admin\AppData\Local\Temp\0766c4c26fcb1f4769b2a7a3aeb501b4.exe"
    1⤵
    • Drops desktop.ini file(s)
    • Drops file in Program Files directory
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\MSOCache\All Users\{90140000-0011-0000-0000-0000000FF1CE}-C\osetup.dll

    Filesize

    5.7MB

    MD5

    078981441fce31da3cf3266708037da6

    SHA1

    1c2b215e59b0b954bf9c1fcb0947f00e0655b599

    SHA256

    58d7ed13fb5be32ad7eec01c8a8f45a44bac8f5901677aa194664891cc533559

    SHA512

    8dc8d2d7c39e1d519be350a58113e8378c9ff244accaaf6c620ee7252ba88c8caaf89474ea24c3515627feaaa037c56dd678601dc9214c37b70db099bc907eef

  • C:\Program Files\Java\jdk1.7.0_80\lib\missioncontrol\plugins\com.jrockit.mc.browser_5.5.0.165303.jar

    Filesize

    5B

    MD5

    b5b682b742431a52ea8b17c72ad9c572

    SHA1

    326320f469235708c59f678c9a7357dca552d306

    SHA256

    30d9045a9f172208b13161d1f5204e5787e5e07bfbb4f490d0041b03b7f44f76

    SHA512

    4e1bd7cc616b3115baf6be7ebd29fe2d1123bc0f25464865a0cf9207b0344fba70747a5ce6f00e8d9c696881f6db1e12f81736bc748b6f2b60bf84c681a49163

  • memory/2276-0-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

  • memory/2276-21-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

  • memory/2276-242-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

  • memory/2276-258-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

  • memory/2276-624-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

  • memory/2276-1391-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB