Overview

overview

7

Static

static

3

2024-01-24...ia.exe

windows7-x64

7

2024-01-24...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/01/2024, 18:23

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-01-24_2155394fe46050fcbdcf414d221b8f20_mafia.exe

  • Size

    384KB

  • MD5

    2155394fe46050fcbdcf414d221b8f20

  • SHA1

    69c658e202db92aea1ab86969fa7b87b5e6f2fe0

  • SHA256

    5ded14e1eed590ef144393f33d90910f60154fbbcd42c901f0a6a457b2b8dcc8

  • SHA512

    5a9c209085a49ae73438e6c83babbed1f9006c80c5ca5824092cf74740c0368044f7320a3b3cf79bfa6f4bf5a1ac464d3e0ea0637c219120a189158408ae010c

  • SSDEEP

    6144:drxfv4co9ZL3GBGgjODxbf7hHAqDPOAnFd0I/+NicZiFQ5jGI7IqvSiwIZ:Zm48gODxbzTCAJrFQ5jFjvaIZ

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-24_2155394fe46050fcbdcf414d221b8f20_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-24_2155394fe46050fcbdcf414d221b8f20_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2084
    • C:\Users\Admin\AppData\Local\Temp\7CED.tmp
      "C:\Users\Admin\AppData\Local\Temp\7CED.tmp" --pingC:\Users\Admin\AppData\Local\Temp\2024-01-24_2155394fe46050fcbdcf414d221b8f20_mafia.exe 924D910AE157A9B4752066625498F47150F79044EF80AE7D874B832743F4A8276077EA813305C0218F2E5E55D6B77D08D6C0AC72A1B8CBE164E940A04C16FBBA
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:3064

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\7CED.tmp
          Filesize

          384KB

          MD5

          4467b25a2c42c0205f103c913cbb122f

          SHA1

          d2a83bf10b202e033e05c5f28ee1abd4fa15ae7c

          SHA256

          96b0ea8b59fca874a1bd8a57272e78573efc57620f3a9dc2e3e4b514fad61478

          SHA512

          891f7a1ac7dcbb92954bf9ae3eda7b1d6ffb3295ff9b4336f90a71d189fc3334fb0059eb3730b6d8eb9960febe70a8fa8689c30e29bcbc92de0f09f4d8f542ff

          Download Submit