Overview

overview

8

Static

static

7

59034aef57...46.exe

windows7-x64

8

59034aef57...46.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    151s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/01/2024, 15:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    59034aef57104495c62e5860fee96b46.exe

  • Size

    275KB

  • MD5

    59034aef57104495c62e5860fee96b46

  • SHA1

    b01f9cbbd1629b09086135494e5967dead1ed4e4

  • SHA256

    98c3111db10c13205050983d25dd245e927be5e726d7db9a804a9b3b9021c0b0

  • SHA512

    a0e854b774a07f6c0934e5cbc19e0f27127b5dcaf185389e7e8c98cd1e80482bdd388137a741d7dd3f037392244ef9f6fb9cd26f0673068bfb2957faa845394f

  • SSDEEP

    6144:TBKHYmz6mq2pmHmFV2YjnWuwqzeRhvaw4a:04m5bpnL2KnEqCRhvaa

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Executes dropped EXE 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\59034aef57104495c62e5860fee96b46.exe
    "C:\Users\Admin\AppData\Local\Temp\59034aef57104495c62e5860fee96b46.exe"
    1⤵
      PID:1364
    • C:\Users\Admin\AppData\Local\Temp\QQPCDownload60116.exe
      C:\Users\Admin\AppData\Local\Temp\QQPCDownload60116.exe
      1⤵
      • Executes dropped EXE
      PID:3556

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\QQPCDownload60116.exe
      Filesize

      320KB

      MD5

      0b33e0f98bd62294a3c12c279bd384c2

      SHA1

      6fdb1e486a04b14027273bbc5b4f73382a9d6c75

      SHA256

      d356d7d0492af2add2252c7b888be8dc196e7bb03623caab0123de732131d898

      SHA512

      4181cfec412a2c14e9dbfcdd52e16b24e70e03453017b2ba6c5d59d40772319763e17059ce68b35e4bf91f520133b683227c36feb9a2449a9ff00bbbd10b89ba

      Download Submit

    • memory/1364-0-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-1-0x00000000022B0000-0x00000000022B1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1364-2-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-4-0x00000000022B0000-0x00000000022B1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1364-6-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-7-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-8-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-9-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-16-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1364-18-0x0000000000400000-0x00000000004D6000-memory.dmp

      Filesize

      856KB

      Download