Overview

overview

6

Static

static

3

0e4625c5a5...14.exe

windows7-x64

6

0e4625c5a5...14.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    175s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 07:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e4625c5a5fc7bfb6fd4c8eb177c7414.exe

  • Size

    7KB

  • MD5

    0e4625c5a5fc7bfb6fd4c8eb177c7414

  • SHA1

    eca4f2363d38fb200ac125e4bbd3b8130a8b72ec

  • SHA256

    dc43eb627ccaa964ac0bc70d284522b7ad319f6b8a4de71ffc0abbd2b6c38634

  • SHA512

    4ea39ef4955c94151ffee3e67950aace421078f965998945288dd90b5ce347947deda3a2fae9319886fd56a356324443b7cdbc49db4a02759e274ac948ba6b30

  • SSDEEP

    96:8uz4E254C2s4y2emZNYrhQKysyM6Kp9TcE2NYlnlYJnLrL0KffvzBEGaEv1dRXmY:8ui+mre+6qGVQnlYJLrLTji3kDN

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 6 IoCs
    persistence

Processes

  • C:\Users\Admin\AppData\Local\Temp\0e4625c5a5fc7bfb6fd4c8eb177c7414.exe
    "C:\Users\Admin\AppData\Local\Temp\0e4625c5a5fc7bfb6fd4c8eb177c7414.exe"
    1⤵
    • Adds Run key to start application
    PID:2732

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2732-0-0x000007FEF5A50000-0x000007FEF63ED000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2732-1-0x0000000000CC0000-0x0000000000D40000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2732-2-0x000007FEF5A50000-0x000007FEF63ED000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2732-3-0x0000000000CC0000-0x0000000000D40000-memory.dmp

    Filesize

    512KB

    Download