Overview

overview

10

Static

static

10

samples2.zip

windows7-x64

1

samples2.zip

windows10-2004-x64

1

032e2e00eb...36.exe

windows7-x64

3

032e2e00eb...36.exe

windows10-2004-x64

3

07e98c92e1...3b.exe

windows7-x64

8

07e98c92e1...3b.exe

windows10-2004-x64

8

0a045d39cb...35.exe

windows7-x64

7

0a045d39cb...35.exe

windows10-2004-x64

7

2d713e13f7...d3.exe

windows7-x64

1

2d713e13f7...d3.exe

windows10-2004-x64

1

37a83fd6b1...32.exe

windows7-x64

1

37a83fd6b1...32.exe

windows10-2004-x64

1

390b31934a...56.exe

windows7-x64

9

390b31934a...56.exe

windows10-2004-x64

9

4dc6bd447e...9d.exe

windows7-x64

1

4dc6bd447e...9d.exe

windows10-2004-x64

1

5300d74561...0d.exe

windows7-x64

10

5300d74561...0d.exe

windows10-2004-x64

10

5e7d11d6bd...c6.exe

windows7-x64

7

5e7d11d6bd...c6.exe

windows10-2004-x64

1

64c7d9f709...20.exe

windows7-x64

1

64c7d9f709...20.exe

windows10-2004-x64

1

7db03ff8a8...3a.exe

windows7-x64

1

7db03ff8a8...3a.exe

windows10-2004-x64

1

81cb6442c2...78.exe

windows7-x64

1

81cb6442c2...78.exe

windows10-2004-x64

1

8629ec2aed...11.exe

windows7-x64

1

8629ec2aed...11.exe

windows10-2004-x64

1

8b13ff52ff...ab.exe

windows7-x64

8

8b13ff52ff...ab.exe

windows10-2004-x64

8

90b4871229...11.exe

windows7-x64

7

90b4871229...11.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    119s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01-01-2024 15:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5e7d11d6bd11b09c4cc0c4ba54ebea19dcc06ae585d0508d3d8dba251075f4c6.exe

  • Size

    349KB

  • MD5

    32fd9d7529be4555e48d1599dc0cd25f

  • SHA1

    cfea66a8b70836a5107e1e5a109048d45d1d4a92

  • SHA256

    5e7d11d6bd11b09c4cc0c4ba54ebea19dcc06ae585d0508d3d8dba251075f4c6

  • SHA512

    8e3b18c93cb05b5c5a7b399deac35a19913dc052c4dac80d034e079ba8c73db84326bac9b40cbda3fa9a8fce7ddcf4d1b85b2ded13602d8d199370743454d383

  • SSDEEP

    6144:65QvNzAcfLSs7w2bhafQEPx96w3KK6cDwSL0JVcBqS:6nmjd1Ev1L0

Score
7/10
agilenet

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Obfuscated with Agile.Net obfuscator 2 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    agilenet

Processes

  • C:\Users\Admin\AppData\Local\Temp\5e7d11d6bd11b09c4cc0c4ba54ebea19dcc06ae585d0508d3d8dba251075f4c6.exe
    "C:\Users\Admin\AppData\Local\Temp\5e7d11d6bd11b09c4cc0c4ba54ebea19dcc06ae585d0508d3d8dba251075f4c6.exe"
    1⤵
    • Loads dropped DLL
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\c18877ee-e996-419a-bf66-d36b419e66d0\AgileDotNetRT64.dll
    Filesize

    142KB

    MD5

    9c43f77cb7cff27cb47ed67babe3eda5

    SHA1

    b0400cf68249369d21de86bd26bb84ccffd47c43

    SHA256

    f25b9288fe370dcfcb4823fb4e44ab88c7f5fce6e137d0dba389a3dba07d621e

    SHA512

    cde6fb6cf8db6f9746e69e6c10214e60b3646700d70b49668a2a792e309714dd2d4c5a5241977a833a95fcde8318abcc89eb9968a5039a0b75726bbfa27125a7

    Download Submit

  • memory/2332-0-0x00000000000E0000-0x000000000013E000-memory.dmp

    Filesize

    376KB

    Download

  • memory/2332-1-0x000007FEF5FB0000-0x000007FEF699C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2332-2-0x000000001AD00000-0x000000001AD80000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2332-9-0x000007FEF7870000-0x000007FEF7897000-memory.dmp

    Filesize

    156KB

    Download

  • memory/2332-10-0x000007FEF48F0000-0x000007FEF4A1C000-memory.dmp

    Filesize

    1.2MB

    Download

  • memory/2332-11-0x000007FEF5FB0000-0x000007FEF699C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2332-12-0x000007FEF7870000-0x000007FEF7897000-memory.dmp

    Filesize

    156KB

    Download