Analysis
-
max time kernel
0s -
max time network
140s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
26/12/2023, 09:55
General
-
Target
6552159a8399d341c4104be63045ef4b.exe
-
Size
329KB
-
MD5
6552159a8399d341c4104be63045ef4b
-
SHA1
e2de5a00c165df4d5b96b016ba7626dd8d22cb40
-
SHA256
21a029589f9c6d5de13ff4ba28bfd5b81c753302fca2b50a1895bfb7ad8ecbf0
-
SHA512
cc3894490e165b7a151486be14da334843d6a4f05e0d127ffe0ebee91cf92f9eb4b5d22c21911594984b81aefe5393da7294e35b49c149556dbb79f5c5defaef
-
SSDEEP
6144:MV/cpm7L0zOSuBLbii5bkgVuN+xSKV7Wkrsf7LskpqS06oGYR9Bc:MVEeLgfcXikbkgaISKVsoP9Bc
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
Processes
-
C:\Users\Admin\AppData\Local\Temp\6552159a8399d341c4104be63045ef4b.exe"C:\Users\Admin\AppData\Local\Temp\6552159a8399d341c4104be63045ef4b.exe"1⤵
-
C:\0d936530-fcb1-4b6c-90a4-7c6f8d9da180\3B19659A-6797-42C6-94D2-7A0AEDDEEDF1.exe"C:\0d936530-fcb1-4b6c-90a4-7c6f8d9da180\3B19659A-6797-42C6-94D2-7A0AEDDEEDF1.exe" -y -pCA01C8D9-8D2F-4AC4-9D57-543B1337A4F12⤵
-
-
C:\Windows\SysWOW64\mshta.exe"C:\Windows\System32\mshta.exe" c:\0d936530-fcb1-4b6c-90a4-7c6f8d9da180\start.hta2⤵
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
208KB
MD5f096faa08dfbb1ec2d02c0301d768d09
SHA19fda41d7fb1fe50012288b683bcbfca1f7597f80
SHA256d9e6162c69b22f10ecff6c7528e0397b8449892484bb240fd65425188289b45d
SHA512007b8408ead36d423be1ba458f0b9b8f90d63f2909940c255e43dfc1828824a848ed7f504dedac681338f2a9a7a5d429b8d20c89f278b50e1ef0a7980009105d