Overview

overview

6

Static

static

3

13f6d308a0...ae.exe

windows7-x64

6

13f6d308a0...ae.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    160s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 09:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    13f6d308a0540fff2de4bf20f1953bae.exe

  • Size

    535KB

  • MD5

    13f6d308a0540fff2de4bf20f1953bae

  • SHA1

    4b9a1cae9b1c5a709ac8d1b112f117f5965280ba

  • SHA256

    7c2b29e23f0a1aefeb0829e629de2789eb831c034dfc281ce314955938be001f

  • SHA512

    fbe2ea487612b5f577ca08cf4e3150b5d759925ffacc4eaab5f2cb686b059266b0bacdbc49a04b9c1b5078c2b186329f92919e040c87a1b9b2ae803857313d80

  • SSDEEP

    6144:SF8RoFkpimdW/FZLe6tSA4jJjcak0f8goie5Obpi/WdjuUP+JmpKQfrUg:SalgmdWFBe64jJjSiQBWR4msg

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Drops file in Windows directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\13f6d308a0540fff2de4bf20f1953bae.exe
    "C:\Users\Admin\AppData\Local\Temp\13f6d308a0540fff2de4bf20f1953bae.exe"
    1⤵
    • Adds Run key to start application
    • Drops file in Windows directory
    PID:2972

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2972-1-0x0000000000400000-0x0000000000490000-memory.dmp

          Filesize

          576KB

          Download