Overview

overview

8

Static

static

3

66596627ad...00.exe

windows7-x64

1

66596627ad...00.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    231s
  • max time network
    259s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/01/2024, 23:46

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    66596627ad4393ed2d8c347e9fccb500.exe

  • Size

    299KB

  • MD5

    66596627ad4393ed2d8c347e9fccb500

  • SHA1

    dce853324338a8c216029cb963725a84d0e09daf

  • SHA256

    6b498809b731cbdcb6435122c52d64963c3ed8c88c5aa8cda03c0e2cbb30d86c

  • SHA512

    444e2e145670dc199bfc54c2cabc35e68e51996fadc928f743c6825b7adc32d553128494d19782f55f8e275b05656dda42de5c82a7b6a71453c8ee3bddb4810c

  • SSDEEP

    6144:1rgpSElrXE2GSn4nDWgRAkPRYGQn8xID0DMF52JUYYiIJdtuKIfvB7h3:OoElXvGFR3PiGLxe0DjJnBCdsKIB5

Score
8/10

Malware Config

Signatures

  • Drops file in Drivers directory 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\66596627ad4393ed2d8c347e9fccb500.exe
    "C:\Users\Admin\AppData\Local\Temp\66596627ad4393ed2d8c347e9fccb500.exe"
    1⤵
    • Drops file in Drivers directory
    • Loads dropped DLL
    • Drops file in System32 directory
    PID:4580

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Windows\SysWOW64\bcrtpl.dll
          Filesize

          94KB

          MD5

          46bf1e4f0f8b74f9107b37efa80345af

          SHA1

          b08d150f0e86c8f4b51e18b49da4ff98b5d8458a

          SHA256

          b1249b50cbb3074a8e12403998edafbc52a0e47466f7b7a49c70b2bad119530e

          SHA512

          8537c0e4ee20bd77647f20a9deb965360e99b384c51f92c3413767dffc8d65740ce02d34d34a5f6881fc8261e153b7e17508570abf18dc45544e512281f2a124

          Download Submit

        • memory/4580-6-0x0000000000400000-0x000000000044F000-memory.dmp

          Filesize

          316KB

          Download

        • memory/4580-2-0x00000000004E0000-0x00000000004E1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/4580-3-0x0000000000A00000-0x0000000000A40000-memory.dmp

          Filesize

          256KB

          Download

        • memory/4580-4-0x0000000002640000-0x0000000002730000-memory.dmp

          Filesize

          960KB

          Download

        • memory/4580-5-0x0000000000400000-0x000000000044F000-memory.dmp

          Filesize

          316KB

          Download

        • memory/4580-0-0x0000000000400000-0x000000000044F000-memory.dmp

          Filesize

          316KB

          Download

        • memory/4580-1-0x0000000000A00000-0x0000000000A40000-memory.dmp

          Filesize

          256KB

          Download

        • memory/4580-12-0x0000000000A00000-0x0000000000A40000-memory.dmp

          Filesize

          256KB

          Download

        • memory/4580-13-0x0000000010000000-0x0000000010019000-memory.dmp

          Filesize

          100KB

          Download

        • memory/4580-14-0x0000000000400000-0x000000000044F000-memory.dmp

          Filesize

          316KB

          Download

        • memory/4580-15-0x0000000002490000-0x0000000002633000-memory.dmp

          Filesize

          1.6MB

          Download

        • memory/4580-16-0x0000000002490000-0x0000000002633000-memory.dmp

          Filesize

          1.6MB

          Download