a21a7bd775ea1e70f7b443adc525b3cf693c55d9af511b1b1debe0a9be470329 | Triage

Analysis

max time kernel
128s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
31/12/2023, 06:59

Sharing

Report Analysis Logs

General

Target

2c8636a7c55f3521b1af7d949f152fce.exe
Size

61KB
MD5

2c8636a7c55f3521b1af7d949f152fce
SHA1

b55ca6fbb6de83c0134c7421812952a63ad1a457
SHA256

a21a7bd775ea1e70f7b443adc525b3cf693c55d9af511b1b1debe0a9be470329
SHA512

826a5d46f4d2fe421a32c89b1c4dd78d3e610c3d461b81e448259ff6bcc38af1456dbcb7f1a822820a8439aef7797463f0223a154ee6e41669ee81ac194133f1
SSDEEP

1536:MtoIjNfmF1ijZdXVkhDSoTtpHP3EJseh8QNc:WoIJfK8vXYDSmtdDevc

Score

7^/10

Malware Config

Signatures

Loads dropped DLL 1 IoCs

pid	Process
3696	2c8636a7c55f3521b1af7d949f152fce.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\44b63.kol	2c8636a7c55f3521b1af7d949f152fce.exe
File created	C:\Windows\SysWOW64\ozrkme.hun	2c8636a7c55f3521b1af7d949f152fce.exe

C:\Users\Admin\AppData\Local\Temp\2c8636a7c55f3521b1af7d949f152fce.exe
"C:\Users\Admin\AppData\Local\Temp\2c8636a7c55f3521b1af7d949f152fce.exe"
1⤵
- Loads dropped DLL
- Drops file in System32 directory
PID:3696

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Windows\SysWOW64\ozrkme.hun

Filesize
94KB

MD5
d56aeeb96f6757df202642ad25fb5cc8

SHA1
7fbd97886f129c489bf65a66356b04a64f649921

SHA256
b9213f75a2a24f1b318e700a7fe2f35781ec15838e608df0d562fcf7ca8e1db2

SHA512
76fe06454d874068567c815a964e306db275b01f9dbd9cef8a8d28416562bc9af23317e655a37c99161faa50ae78ab002145d8d17166b6fba24cfd7ef6b12220

Download Submit