3e6cd4275d41a4fa7dddfa5197c93042e505ad913ebc2fe133e2d66b3e2d8762

Analysis

max time kernel
120s
max time network
124s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
28-12-2023 20:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f6f11acfc2a49149e104c06d30c98db4.exe
Size

121KB
MD5

f6f11acfc2a49149e104c06d30c98db4
SHA1

0fa85d0c2dbd49b0794884ceead22d1f723cdf11
SHA256

3e6cd4275d41a4fa7dddfa5197c93042e505ad913ebc2fe133e2d66b3e2d8762
SHA512

807b403021d5569d14be7caea7fb2e884236c43484b2fb51d5ea50189adf73f1b3c94cf224d197e2870b6f6028cf270cc422b690ca5949f9e8ddbb31be16052c
SSDEEP

3072:U6kWz0cRpkVFNkX/HedyUW9FPROGx2hTOtRP8qR:U6Xz0cjk2PJ5O5aRU

Score

7^/10

Malware Config

Signatures

Loads dropped DLL 3 IoCs

pid	Process
1648	f6f11acfc2a49149e104c06d30c98db4.exe
1648	f6f11acfc2a49149e104c06d30c98db4.exe
1648	f6f11acfc2a49149e104c06d30c98db4.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\comsa32.sys	f6f11acfc2a49149e104c06d30c98db4.exe
File opened for modification	C:\Windows\SysWOW64\comsa32.sys	f6f11acfc2a49149e104c06d30c98db4.exe

C:\Users\Admin\AppData\Local\Temp\f6f11acfc2a49149e104c06d30c98db4.exe
"C:\Users\Admin\AppData\Local\Temp\f6f11acfc2a49149e104c06d30c98db4.exe"
1⤵
- Loads dropped DLL
- Drops file in System32 directory
PID:1648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\mpj93846.dll

Filesize
65KB

MD5
43c0c013c8b6439dead5976ca42c81db

SHA1
48942887789d0767aed4ee8eb58f9a930f57a456

SHA256
f014b9a2f325999c6802dc7ce0f17b386a399e53f2396bdae64dbfb9ef1cfd99

SHA512
bc2095740756f026e1f749dd3682d639f434e0e7caa10d68946fbea508ee42cea08e21dea6f62daa1a651b1105ba27935b29d903c0979934e085267e10c87696

Download Submit
\Users\Admin\AppData\Local\Temp\mpj93846.dll

Filesize
186KB

MD5
47ef3d411c260a1b794c49c2a915233c

SHA1
16c32a71b6731ecf2a01f0c9ee114e3b7c0c6d9f

SHA256
f32fd9bfbbfbe60edfb83125554b2ca63f43018cee8b15abc6b3e8f96f65a419

SHA512
777534b068b5bd78d77be0e52e8cd8a1d06c4b5efa0e3d996d8fa8d30e7cf5d73137ac3696c5a00f2fb02a0ec883694b3c4a4fcf3e79fa3621496d9680eacd10

Download Submit
\Users\Admin\AppData\Local\Temp\mpj93846.dll

Filesize
45KB

MD5
6bf14d5355b6c4bf88628a20bbe59a7e

SHA1
f112dc54505ddd8892b70ca98e38e26e99d01acf

SHA256
053bcbeb2e2224b26f20f64ae45d6168385be52c484765fa8ac7421a394884c0

SHA512
36af3a708d5b06b44e004bf8c38ad01b02987d36576fd3ea196bf254209cc0874b08b1ff55b68bf46a7cadc5a0c00abe43bb750d0065429b9a31946b7477bb53

Download Submit
\Users\Admin\AppData\Local\Temp\mpj93846.dll

Filesize
691KB

MD5
c8ea40c0deee1ea60e3371db95ad6ec8

SHA1
28f575d0b0259b6498e0eab355bfbb841a82b5fb

SHA256
6368857d6b2140c285bf3570fea83ac9ab0d4a3bf907fe4a6de654bffd1859aa

SHA512
d641b7cf100c3af148319f964448c8c95b2825a49017bdcfafa1ccad97a767bc7b89f34dd90536bf7949e6a82b35773d999db0e5c983d9c2ce4ce0d7cb14ab7e

Download Submit
memory/1648-10-0x0000000010000000-0x0000000010024000-memory.dmp

Filesize
144KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads