c94497c093653047e8c61ef3ec031c47e32e2951273765950b64264dea7b46ad | Triage

Analysis

max time kernel
122s
max time network
125s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
30-12-2023 13:14

Sharing

Report Analysis Logs

General

Target

19a6489e48704bff8a37d2a691abca6f.exe
Size

13KB
MD5

19a6489e48704bff8a37d2a691abca6f
SHA1

3cd1c8e8dac736ad8efdb5061ce5a14249d38912
SHA256

c94497c093653047e8c61ef3ec031c47e32e2951273765950b64264dea7b46ad
SHA512

b2b10c56d069684cadbf005a2b434c1ff84c92026eef1d3a10540fb67abb08e1cf6a41e3def35f49305ac31ac987bd8a16d7d24c19ee589cf56622528e855c75
SSDEEP

384:SDBrm3a9asNqPP4JX1BYOfYGO4HWb6/ruKIF:SNl9a3X8X5fC4YquKIF

Score

5^/10

Malware Config

Signatures

Drops file in System32 directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\Connections.dlx	19a6489e48704bff8a37d2a691abca6f.exe

Drops file in Windows directory 3 IoCs

description	ioc	Process
File created	C:\Windows\SYSTEM14\winlogo.dll	19a6489e48704bff8a37d2a691abca6f.exe
File created	C:\Windows\SYSTEM14\Connections.dll	19a6489e48704bff8a37d2a691abca6f.exe
File created	C:\Windows\SYSTEM14\ietest.log	19a6489e48704bff8a37d2a691abca6f.exe

C:\Users\Admin\AppData\Local\Temp\19a6489e48704bff8a37d2a691abca6f.exe
"C:\Users\Admin\AppData\Local\Temp\19a6489e48704bff8a37d2a691abca6f.exe"
1⤵
- Drops file in System32 directory
- Drops file in Windows directory
PID:1928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1928-1-0x0000000000400000-0x0000000000406200-memory.dmp

Filesize
24KB

Download
memory/1928-2-0x0000000000400000-0x0000000000406200-memory.dmp

Filesize
24KB

Download