41ff8c08e0a2e7a051724bc0bfd13b9d9df19fb50f4bf485523c2cc88837ac81 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

4d52810a03...85.exe

windows7-x64

7

4d52810a03...85.exe

windows10-2004-x64

6

Analysis

max time kernel
12s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
09-01-2024 04:22

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4d52810a0390ff496f0feb04c7ec1385.exe

Resource

win7-20231215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

4d52810a0390ff496f0feb04c7ec1385.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

4d52810a0390ff496f0feb04c7ec1385.exe
Size

320KB
MD5

4d52810a0390ff496f0feb04c7ec1385
SHA1

0708d998fea7ce92dfd99b9d97b753d4b6c6f9f7
SHA256

41ff8c08e0a2e7a051724bc0bfd13b9d9df19fb50f4bf485523c2cc88837ac81
SHA512

68dee08ad0c3bf655e90dcb29188b88e42a34241d8395664443ca5c3cfb842ccb07c2a8dfd2e126cdf3dba3a893bf31358d2a69b6f4fdbe00cf1488324ee4c77
SSDEEP

6144:26lXsWG6puLQsLOLZDdiSVjmC6SEIg4M:26dsc8L3LOLdfiI4

Score

6^/10

discovery

Malware Config

Signatures

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\4d52810a0390ff496f0feb04c7ec1385.exe
"C:\Users\Admin\AppData\Local\Temp\4d52810a0390ff496f0feb04c7ec1385.exe"
1⤵
PID:2080

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\GetBot\getbot.exe
Filesize
188KB

MD5
81ff6adf171ecd2cad23e9430ed66a22

SHA1
c09ccdac3300e517387cc2f69536ed097b8c7fd0

SHA256
99e285b7349f64ebcc2b04ccc3441bee356d52c1fb324fd28fc011bc90487a3f

SHA512
020c2c032f4d644c3852dd2b0af785cd55b87943da9bbdb38ec1e71a70741dbd1df851628db7aff9ae2e0cef293f66147467c9c333f2726e22e9f1e0e9e57c25

Download Submit

© 2018-2024

Terms | Privacy