Overview

overview

7

Static

static

3

3c85aec264...cf.exe

windows7-x64

7

3c85aec264...cf.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 20:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3c85aec26443399f160e40dd16c587cf.exe

  • Size

    61KB

  • MD5

    3c85aec26443399f160e40dd16c587cf

  • SHA1

    f09bd6710c4bdb9a45212264f5f1972774c36cf9

  • SHA256

    bdd29eb3e343976afac12cb8a08ad2db86a579787838cf7f14538620e38c5aed

  • SHA512

    4323172d6ba61977e048e9ac90a5ee01154d187afaf25e2b4a4bdf54885d77a894265be6ecf0ab9273f04c0d83b18d055ccf4c73101c5ce4e367f99af4e43a24

  • SSDEEP

    768:VQ5VIvkOCxcaUjziNKd9bgLxrT1O0UH9zYo30le24dz7NXfp41gJT7+WOdU1YKmn:CtARddgePH9zYoyvufRl+WOzjjc0DcJM

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3c85aec26443399f160e40dd16c587cf.exe
    "C:\Users\Admin\AppData\Local\Temp\3c85aec26443399f160e40dd16c587cf.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in System32 directory
    PID:1900

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Windows\SysWOW64\ordnil.gtm
          Filesize

          94KB

          MD5

          f0ad846b557cb10131f2b22c8d40be52

          SHA1

          84450534705a34b138b360603dbcaf4687284d91

          SHA256

          8dbe88f6bee7e92e9f4e2a871f27741142ee88e37a1c0cb8a057e787a08feb35

          SHA512

          ba31ef1b9f8532a1aca77b020bb36370c87ac8608c1f2557284f4209387be61da0ebaaf16067082f917ce5aa780a69683afb48f04689288468a9d3dd64f32914

          Download Submit