Analysis
-
max time kernel
144s -
max time network
139s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
-
submitted
12-01-2024 02:42
General
-
Target
fgyjk/03F76412C9334BF.exe
-
Size
232KB
-
MD5
11fa2146c4527103ca10513b727a2f16
-
SHA1
b27bbae26949f55b7ffe6d895d8e9f47e1a71688
-
SHA256
c406715895b447c0d94125442386cf9d0680e28e486401ab998957f08dd8f859
-
SHA512
5c157d1a6cd101ea6baf0b1708bfc6b67dcc470419162425b8bfd6b72f40d9b71e39567765110e6fafbcf5e7010988e78aeff25804ebe5c6b4c6128bc3f6d063
-
SSDEEP
3072:mqyyfpuqYo4sE5u3p7oyBLoqN8r9b3fEoQnSe7CZftJUOGX9M63QoboxH:mXuVE5uZ7ogWr9ZntSX9M63cH
Score
6/10
Malware Config
Signatures
-
Adds Run key to start application 2 TTPs 1 IoCs
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Checks processor information in registry 2 TTPs 2 IoCs
Processor information is often read in order to detect sandboxing environments.
Processes
-
C:\Users\Admin\AppData\Local\Temp\fgyjk\03F76412C9334BF.exe"C:\Users\Admin\AppData\Local\Temp\fgyjk\03F76412C9334BF.exe"1⤵
- Adds Run key to start application
- Checks processor information in registry
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4.9MB
-
Filesize
2.8MB
-
Filesize
2.8MB
-
Filesize
4KB
-
Filesize
4.9MB
-
Filesize
2.8MB
-
Filesize
4KB