Overview

overview

7

Static

static

3

534c98d1c5...00.exe

windows7-x64

7

534c98d1c5...00.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    146s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11-01-2024 10:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    534c98d1c5bb3c8616b7dfced7300f00.exe

  • Size

    7.3MB

  • MD5

    534c98d1c5bb3c8616b7dfced7300f00

  • SHA1

    1522f5491c845224365805f3272e1299b2fe0dbd

  • SHA256

    0f94ad8e91716541cb7f16cf430134ad3f5057efcd4cd5a0b5a3f3ca7af4006a

  • SHA512

    660d7d11d9bc422e1bce7144f2916819b49aa9e6ed290b2c1c2fa37be388adb6dda80fb3501e7cb00610d2fed8cdb7e480cab2f69055ced6df334bdf3ef561fc

  • SSDEEP

    196608:bW1GKRjr//cmlgRB2JgFr2Xfbpbv0I49R/4paSbfZ1Vxl/:K4WHct2xbpbv7OWaSbfZrxB

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 11 IoCs
  • Drops file in System32 directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\534c98d1c5bb3c8616b7dfced7300f00.exe
    "C:\Users\Admin\AppData\Local\Temp\534c98d1c5bb3c8616b7dfced7300f00.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in System32 directory
    PID:5068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\GLC50DF.tmp
    Filesize

    161KB

    MD5

    263e81631fb67194dc968dc3f4bdb4e7

    SHA1

    2998697c503a542d5cf1e25a0d0df18fcd38d66c

    SHA256

    9200949ab6f777df957fc524d4733e2cb47b89a209c07d2be57b4c63cecbf766

    SHA512

    2eb6fd28ba87f193a35f1c4bd4c6ff29495a3c10fea8bfa0506df97fcae5ca16f2617703137ecb32cf6b7dbd3048507dd4d0c7418845cfdce5c43896aec45dbb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\GLF54FA.tmp
    Filesize

    10KB

    MD5

    3b2e23d259394c701050486e642d14fa

    SHA1

    4e9661c4ba84400146b80b905f46a0f7ef4d62eb

    SHA256

    166d7156142f3ee09fa69eb617dd22e4fd248aa80a1ac08767db6ad99a2705c1

    SHA512

    2b792296dffa4e43bc85295dc7691bd29762ce5d9d5eafaa74e199e6a8e5b24aa85d0a1b27776d4719a49b0d29abcf6f240746a209528e608b596b560e5a3b88

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\MESNIFF.dll
    Filesize

    48KB

    MD5

    b1aea4bdec529612d563bd01c06b43fe

    SHA1

    b617ec21606448eb6332adcd42c18d1ae7f8121c

    SHA256

    d1a5530d58d6217a81a15835df0654e4a27200abd082723f155df94060c747bd

    SHA512

    dccdab7fb50618e5d64fc8f002fdd63c43593009f1f1137930dc0c60cfc96384d1c8b9373e305b29f37ed12a041d300fad5037e5798c3ed800c89e7980b5a11b

    Download Submit

  • memory/5068-12-0x0000000002250000-0x000000000225E000-memory.dmp

    Filesize

    56KB

    Download