cb1b254c648f62612c5442ada68a9c7432705dd5cace5fc8487bfaa9886c24b7

Analysis

max time kernel
139s
max time network
144s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
29/12/2023, 19:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

01b5bae13126d54e6c6084aeadab10ba.exe
Size

116KB
MD5

01b5bae13126d54e6c6084aeadab10ba
SHA1

037f06b71f5ba3e0864be8956a278b1d05afd88a
SHA256

cb1b254c648f62612c5442ada68a9c7432705dd5cace5fc8487bfaa9886c24b7
SHA512

61a8a433f7e73d1c776c60ae7d04efdd23d677b59a4477e71ba520c42542a99d855dc1cdc7a22c7880c31e0632ae6a4d35165818926783cf96a81baece3b1af1
SSDEEP

1536:UE+HW8nZU49ihyhxopuOFwXkJn2Fj8B2KjgtAb7at6E6clUCcjuI7ICyOK8WMJDt:UET8nTXiU+Re2Fc6clgHJ+x1Q

Score

6^/10

persistence

Malware Config

Signatures

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-928733405-3780110381-2966456290-1000\Software\Microsoft\Windows\CurrentVersion\Run\f5ywqdrthi = "C:\\Users\\Admin\\AppData\\Local\\Temp\\01b5bae13126d54e6c6084aeadab10ba.exe"	01b5bae13126d54e6c6084aeadab10ba.exe

C:\Users\Admin\AppData\Local\Temp\01b5bae13126d54e6c6084aeadab10ba.exe
"C:\Users\Admin\AppData\Local\Temp\01b5bae13126d54e6c6084aeadab10ba.exe"
1⤵
- Adds Run key to start application
PID:1976

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads