a8fefbf7163dac2730ef4f6545ce9b5d27ee073941107d1a0de0447c4c9ba0de

Analysis

max time kernel
149s
max time network
124s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
29/12/2023, 19:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0177f7c7b8e0fea8ed57152099557901.exe
Size

1.8MB
MD5

0177f7c7b8e0fea8ed57152099557901
SHA1

e83fd279b05a73d021eedd51f36be69c9c5e2765
SHA256

a8fefbf7163dac2730ef4f6545ce9b5d27ee073941107d1a0de0447c4c9ba0de
SHA512

149388a7967460b0ff7196cc61a81d1a27c0d3bf11bf8e5a0e5e4e7b47803178ddf388aa29752170c02f44ed1e2ce66aad88cf1bf6ef84017ab56acd2a90cebf
SSDEEP

24576:S6pQPxQ2JyP2r5mJV91xM7RpbwgIvs7NxqUkHm:SCqm2Jpr0nNM7Dus7Nx2G

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral1/memory/1016-0-0x0000000000400000-0x00000000005BA000-memory.dmp	upx
behavioral1/files/0x0009000000015e9f-5.dat	upx
behavioral1/memory/1016-343-0x0000000000400000-0x00000000005BA000-memory.dmp	upx

Drops desktop.ini file(s) 1 IoCs

description	ioc	Process
File created	C:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini	0177f7c7b8e0fea8ed57152099557901.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\VisualElements\LogoCanary.png	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\prism-d3d.dll	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Stationery\Genko_1.emf	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Stationery\Stars.jpg.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\base_jpn.xml	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsScenesBackground_PAL.wmv.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsMainBackground_PAL.wmv	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsScenesBackground.wmv	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Stacking\NavigationRight_SelectionSubpicture.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSLoc.dll	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\System\Ole DB\ja-JP\sqlxmlx.rll.mui.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\DvdTransform.fx.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Push\NavigationUp_SelectionSubpicture.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\hr.pak.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Google\Chrome\Application\106.0.5249.119\VisualElements\SmallLogoBeta.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\EnterDeny.m4a	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\lt.pak	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\fr-FR\IPSEventLogMsg.dll.mui.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\fr-FR\tabskb.dll.mui	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\System\Ole DB\fr-FR\msdasqlr.dll.mui	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\System\ado\msadomd.dll.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationLeft_ButtonGraphic.png	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\bin\jvisualvm.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\klist.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\dcpr.dll	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\mshwjpn.dll	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\BabyGirl\16_9-frame-image-mask.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\de-DE\WMM2CLIP.dll.mui.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_pt_BR.jar.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Pets\Pets_image-frame-ImageMask.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\ResizingPanels\NavigationUp_SelectionSubpicture.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Java\jdk1.7.0_80\jre\bin\rmiregistry.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee100.tlb	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\fr-FR\tipresx.dll.mui	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\JavaAccessBridge-64.dll.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\NavigationLeft_SelectionSubpicture.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\ml.pak	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Internet Explorer\iediagcmd.exe.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Java\jdk1.7.0_80\jre\bin\awt.dll.exe	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\7-Zip\Lang\cy.txt	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\Stationery\Orange Circles.htm	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\en-US\split.avi.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\System\msadc\adcjavas.inc.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\ja-JP\TipRes.dll.mui	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\mr.pak	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Google\Chrome\Application\106.0.5249.119\VisualElements\SmallLogoCanary.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationRight_ButtonGraphic.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\LICENSE.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_hu.jar.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\ipshrv.xml.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\NavigationUp_ButtonGraphic.png	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\TitleButtonIcon.png	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Rectangles\NavigationLeft_ButtonGraphic.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Memories\Title_mainImage-mask.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\NavigationUp_ButtonGraphic.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Performance\PreviousMenuButtonIconSubpi.png	0177f7c7b8e0fea8ed57152099557901.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\ko.pak	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\Microsoft Shared\ink\hwrfralm.dat	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\System\DirectDB.dll.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Common Files\System\Ole DB\oledb32.dll	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\Full\dotsdarkoverlay.png.exe	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\Internet Explorer\Timeline_is.dll	0177f7c7b8e0fea8ed57152099557901.exe
File created	C:\Program Files\DVD Maker\Shared\DvdStyles\rectangle_photo_Thumbnail.bmp.exe	0177f7c7b8e0fea8ed57152099557901.exe

C:\Users\Admin\AppData\Local\Temp\0177f7c7b8e0fea8ed57152099557901.exe
"C:\Users\Admin\AppData\Local\Temp\0177f7c7b8e0fea8ed57152099557901.exe"
1⤵
- Drops desktop.ini file(s)
- Drops file in Program Files directory
PID:1016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\7-Zip\7-zip32.dll.exe

Filesize
1.7MB

MD5
dc52d65aa19990f390dc18510d3d4d92

SHA1
77ddb9ec62e3bc06cc70d001515e0410717723da

SHA256
4a967783f40ea33947e2fd42ec57a44c0b908e25b6b608612d89c40206b0166a

SHA512
ee9d040c99f76342080dbb9afb8547406527664f35dedd7b81d7676eec2c2e11c81021570d425c0bfacba7193f5d92c049e978b6bc24949d945fc6f41e2750cb

Download Submit
memory/1016-0-0x0000000000400000-0x00000000005BA000-memory.dmp

Filesize
1.7MB

Download
memory/1016-343-0x0000000000400000-0x00000000005BA000-memory.dmp

Filesize
1.7MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads