Overview

overview

7

Static

static

3

11d3db8562...4b.exe

windows7-x64

7

11d3db8562...4b.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 07:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    11d3db8562e510c0914d906b3b38c64b.exe

  • Size

    270KB

  • MD5

    11d3db8562e510c0914d906b3b38c64b

  • SHA1

    242c74fa16445f039e9e3e62d1fc9da8dd63841c

  • SHA256

    9bfef11b295d91c4b08df8c46566146d0feea4afd5715241b77a0ec1b6cf5842

  • SHA512

    94d60ec2c3b2b5144bb32f66f978159a48c2d2d67f0cf65a3d4f76bd194d47c1f8231312b1ca638c8628b94b2d587c03c0b287b74eceaba0a6f48f65b7f4d3ce

  • SSDEEP

    6144:AlIKFeyvjeaQmfEHFafEgaQn3txN4ZOMa2P9fT6aVc5mEE3t:Al3vKabES5aQdMcMX9b6a+cEI

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\11d3db8562e510c0914d906b3b38c64b.exe
    "C:\Users\Admin\AppData\Local\Temp\11d3db8562e510c0914d906b3b38c64b.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: GetForegroundWindowSpam
    PID:832

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\Tsu-0340.dll
    Filesize

    13KB

    MD5

    7c7cbbec884286684d8999840452903b

    SHA1

    6ac1c13b71982fc684eda29d453266a48b242e39

    SHA256

    cc45d978d6b98ef8e65ca13cb7cc27d984009a5830d54bf01d646f6718c94e02

    SHA512

    697fcd3041160d157f9e7e928d39e6cf0c72fb8c45a2bf0aa766397adc80ea17a7500559c9f825bc05f9eaa5997df2600650d4d7ab019c2bd15c564b0b2eebbf

    Download Submit