Overview

overview

7

Static

static

3

51beb0b023...ab.exe

windows7-x64

7

51beb0b023...ab.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/01/2024, 22:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    51beb0b02383481bf11fdf7a7318efab.exe

  • Size

    2.8MB

  • MD5

    51beb0b02383481bf11fdf7a7318efab

  • SHA1

    03686c8d2e7043570a5e35efe198defae4e2c449

  • SHA256

    e332a54e41bf257395952b632eeaccf06e3acc45b186b7d54f4091a4452a77f7

  • SHA512

    62a26545c7fcb9af5c71738fa0d97ae59d538ca532765130325990660a44446acf3e275bde13c71698cd49eb92bed49d54c933f34336dbc81778e8af8890c6b9

  • SSDEEP

    49152:Z4sUn0DrmFRtJTtCZJSvHyqFSoSVM3p9KtYPslEf6xmQq+Ygo3BsP9VMua01c3cE:mn0fgrMQyVypgyn6xvqlKKu8P

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\51beb0b02383481bf11fdf7a7318efab.exe
    "C:\Users\Admin\AppData\Local\Temp\51beb0b02383481bf11fdf7a7318efab.exe"
    1⤵
    • Loads dropped DLL
    PID:3360

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\ci0-temp\install.bmp
          Filesize

          9KB

          MD5

          1463a5f9de903c9b0cdbc28920414b7f

          SHA1

          4a64da9fcdc2ef0588ec6c5d2a1e43e670b08648

          SHA256

          dca76d020730f2dff4852dd661880819753a074c50497536b9a4b6ffe8ea00c2

          SHA512

          ab65c14fab907d2536e9d4cc35fa88149d07304cc08dbc261fce055d953fa7d4fb8f62690a80bb9edfcc34f6ba7f540035c999a746ddce5f93ba0680159d7a21

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\gert0.dll
          Filesize

          88KB

          MD5

          17f25804018f53627d1edfb3f7407e76

          SHA1

          889fcdd4ac524ea2a2874b4abfbf90160bdbe75e

          SHA256

          7325849786299ff7adf93578947a2ef778f3288d365851ec969f39d11fbeb895

          SHA512

          7703a88a5dd0b848e4789d2a860832aae924a40d6a7099db2669d355c22c7d220ddfe2f36be8099bd04cb428c73b50d1abe95a69aa7749ad3f12889e91583b75

          Download Submit