Overview

overview

7

Static

static

3

2024-01-24...ia.exe

windows7-x64

7

2024-01-24...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/01/2024, 06:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-01-24_7fa1bd4ed3f7190a5d564ce9f0f3c343_mafia.exe

  • Size

    476KB

  • MD5

    7fa1bd4ed3f7190a5d564ce9f0f3c343

  • SHA1

    0833735c3e90c16a13afc350f32ff0999bfd28f8

  • SHA256

    ffc2056723105a426eb9dee86e2a357b42cda50c451074de4b1e5c374799e0c0

  • SHA512

    ffa820f3bddec92b8db488404a169804b80583fa2d89936528fb6a709b258fb6fcab024fb51225698480b1edb33d0821c54cad2ca45daf10de2816f99e785201

  • SSDEEP

    12288:aO4rfItL8HRJ3QLEsyFxorjZDx0eyS2CH7K9wlsDpVFd:aO4rQtGR4Eh030eyS3H+9wlsDpVFd

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-24_7fa1bd4ed3f7190a5d564ce9f0f3c343_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-24_7fa1bd4ed3f7190a5d564ce9f0f3c343_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Users\Admin\AppData\Local\Temp\9BA3.tmp
      "C:\Users\Admin\AppData\Local\Temp\9BA3.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-01-24_7fa1bd4ed3f7190a5d564ce9f0f3c343_mafia.exe BDF6A43BF067163005E1FFA5087BF282DBB109CBF988E09074C0FD8556E3DEBBC26B47779D52521217D0605294B6F6AB1BCF543F2BFF64BD4866D9AF047381F5
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:1968

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\9BA3.tmp
          Filesize

          476KB

          MD5

          7205850ce6b011f823dbb4b862e8e431

          SHA1

          45725bbae11e522d5bd712b60223940b9ea068f4

          SHA256

          fe7200fa347a3910683d053163d890ce99926805d244a4e171c645d785347ba3

          SHA512

          395029d622321779758fa16b928b912f6ce4d7d8458ba8cbc574080c53afd24a078c794e7649fcc47beb6591334b39a74156e8d905b9f383a097870a81e808e4

          Download Submit