0506185885de58d416766705c9caef76ededbd81175e16e9c45a510ffe99410b

Analysis

max time kernel
140s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
24/01/2024, 12:02

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

722fd2c4b914f1281a37b46013d1212b.exe
Size

367KB
MD5

722fd2c4b914f1281a37b46013d1212b
SHA1

a882ca0347dc709b662a7083827868c7c9561730
SHA256

0506185885de58d416766705c9caef76ededbd81175e16e9c45a510ffe99410b
SHA512

d83c2213c07c4b6fe8b995b80d294f87f9a7627e4b9814e034a8928b08a96eb2ace2120a081105973ee5ee5a78080deae0103e0f6675522bfcfcd2e253ed8592
SSDEEP

6144:dBOGU3pSA77fUX0ISwpDm84Y9Y2h1IJggpO+9wXghtgXMsYxRhX7DVBbzZ1FtI8F:dBRU177fUX0eiDeO+A1HJYi

Score

7^/10

Malware Config

Signatures

Drops startup file 1 IoCs

description	ioc	Process
File created	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\722fd2c4b914f1281a37b46013d1212b.lnk	722fd2c4b914f1281a37b46013d1212b.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\722fd2c4b914f1281a37b46013d1212b.exe
"C:\Users\Admin\AppData\Local\Temp\722fd2c4b914f1281a37b46013d1212b.exe"
1⤵
- Drops startup file
PID:928

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/928-0-0x00000000003B0000-0x00000000003B1000-memory.dmp

Filesize
4KB

Download
memory/928-1-0x00000000003C0000-0x00000000003C2000-memory.dmp

Filesize
8KB

Download
memory/928-2-0x00000000003D0000-0x00000000003D1000-memory.dmp

Filesize
4KB

Download
memory/928-3-0x0000000000AD0000-0x0000000000AD1000-memory.dmp

Filesize
4KB

Download
memory/928-4-0x0000000000BF0000-0x0000000000BF1000-memory.dmp

Filesize
4KB

Download
memory/928-5-0x0000000002B80000-0x0000000002B81000-memory.dmp

Filesize
4KB

Download
memory/928-7-0x0000000002FE0000-0x0000000002FE1000-memory.dmp

Filesize
4KB

Download
memory/928-6-0x0000000002B90000-0x0000000002B91000-memory.dmp

Filesize
4KB

Download
memory/928-8-0x0000000002FF0000-0x0000000002FF1000-memory.dmp

Filesize
4KB

Download
memory/928-9-0x0000000003000000-0x0000000003001000-memory.dmp

Filesize
4KB

Download
memory/928-10-0x0000000003020000-0x0000000003021000-memory.dmp

Filesize
4KB

Download
memory/928-11-0x0000000003030000-0x0000000003031000-memory.dmp

Filesize
4KB

Download
memory/928-13-0x0000000003050000-0x0000000003051000-memory.dmp

Filesize
4KB

Download
memory/928-12-0x0000000003040000-0x0000000003041000-memory.dmp

Filesize
4KB

Download
memory/928-14-0x0000000003090000-0x0000000003091000-memory.dmp

Filesize
4KB

Download
memory/928-16-0x00000000030C0000-0x00000000030C1000-memory.dmp

Filesize
4KB

Download
memory/928-15-0x00000000030B0000-0x00000000030B1000-memory.dmp

Filesize
4KB

Download
memory/928-18-0x00000000030E0000-0x00000000030E1000-memory.dmp

Filesize
4KB

Download
memory/928-17-0x00000000030D0000-0x00000000030D1000-memory.dmp

Filesize
4KB

Download
memory/928-19-0x0000000002BA0000-0x0000000002BA1000-memory.dmp

Filesize
4KB

Download
memory/928-20-0x0000000003010000-0x0000000003011000-memory.dmp

Filesize
4KB

Download
memory/928-22-0x00000000030A0000-0x00000000030A1000-memory.dmp

Filesize
4KB

Download
memory/928-21-0x0000000002FD0000-0x0000000002FD2000-memory.dmp

Filesize
8KB

Download
memory/928-23-0x00000000030F0000-0x00000000030F1000-memory.dmp

Filesize
4KB

Download
memory/928-24-0x0000000003100000-0x0000000003101000-memory.dmp

Filesize
4KB

Download
memory/928-25-0x0000000003110000-0x0000000003111000-memory.dmp

Filesize
4KB

Download
memory/928-26-0x0000000003060000-0x000000000308C000-memory.dmp

Filesize
176KB

Download
memory/928-29-0x0000000003120000-0x0000000003121000-memory.dmp

Filesize
4KB

Download
memory/928-31-0x0000000003130000-0x0000000003131000-memory.dmp

Filesize
4KB

Download
memory/928-37-0x0000000005390000-0x0000000005391000-memory.dmp

Filesize
4KB

Download