Overview

overview

7

Static

static

3

4eda70254d...7c.exe

windows7-x64

7

4eda70254d...7c.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    202s
  • max time network
    210s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-12-2023 03:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4eda70254d75d849b0cd738e5619b27c.exe

  • Size

    48KB

  • MD5

    4eda70254d75d849b0cd738e5619b27c

  • SHA1

    d41240f5609cd7119419374c00513964da53fb97

  • SHA256

    dda43b48e2cd7205a202bcceef5fad4f28363b588859d20dd6090f7b226d50df

  • SHA512

    26a5ead3345d636c4b133b5a2d7318c497aa0daf1f098ec95de1cb0b258a25720ab3fb942219ecd3ca5e7341e2ed83f0076cd0fb43d410470fc22d9355c7e19d

  • SSDEEP

    768:vSup23EQCjlQRB8/ewZ1iU6nyYFxbssT/F/O71mJ5s0BT0HpqHFTog:Ku4EQalMK/ewGnh0mJyA0IHhog

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\4eda70254d75d849b0cd738e5619b27c.exe
    "C:\Users\Admin\AppData\Local\Temp\4eda70254d75d849b0cd738e5619b27c.exe"
    1⤵
    • Loads dropped DLL
    PID:1100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsfC35D.tmp\NSISdl.dll
    Filesize

    14KB

    MD5

    f0e51d5722c11a4fe40c97b746c1ffc5

    SHA1

    8ec31853e9ef08fdc2a8c3c8eaa5f5b9469af193

    SHA256

    93a27f96055ae6b7f44916e13487b0efa7cd6d762e6768f7cb6427e32bda777d

    SHA512

    212c1ed753b54e5eccf7e1421bcca86955e09d6e3873f891d3d7076e21f79feb5f1dba350818804a215980875c306283b02f628fbc191d958f0de0f528c7194a

    Download Submit