Overview

overview

5

Static

static

3

738bfbf9b7...4e.exe

windows7-x64

5

738bfbf9b7...4e.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    144s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/01/2024, 02:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    738bfbf9b7424dec9f0e0c70a819bd4e.exe

  • Size

    45KB

  • MD5

    738bfbf9b7424dec9f0e0c70a819bd4e

  • SHA1

    f1508f8941d70960ea53aebace46344818c0d3f3

  • SHA256

    c6f9aa11af14e44d068219470517ca1f65e2532a524d63f8a52fe5ae60d67f22

  • SHA512

    5a264941045dcc5756356860da9f15e0012912784606a3a541927bbf1af2b4b6bb603f367db1236e30737279416867cb5d3221ca650ced09fd80d0c53f51d405

  • SSDEEP

    768:q9TTaOWBzbsVpZsXJ3fvq1JCw4gOLxLXLNZbisGXnd8lqYW2ycFblFqy:dOWBzbGwJ3HkCw4gOV3N8sUeUUpF3qy

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\738bfbf9b7424dec9f0e0c70a819bd4e.exe
    "C:\Users\Admin\AppData\Local\Temp\738bfbf9b7424dec9f0e0c70a819bd4e.exe"
    1⤵
    • Drops file in System32 directory
    PID:680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\alg.scr
    Filesize

    1KB

    MD5

    0b048f81edfc8bf6223efc98fee689fa

    SHA1

    b7a186823c92c0b9384d894993100ee2ffad9e31

    SHA256

    a07e081488ed496891220c0192c7b8daa1e25827561070990940b482adda8a8b

    SHA512

    48d8c59cba2d01a4b72cd650360c8c200802ffcced66701ca6df5a5c8ed3be2ffbb33ffa9b596d966a07b23e68d98dca748d9bf46f7dc68611bdcd3f4ff7baad

    Download Submit

  • C:\Windows\SysWOW64\hosts.scr
    Filesize

    1KB

    MD5

    c6ada9e4856c34022d4ea00d77dcb1b9

    SHA1

    a407ba0aa4d6c57c6354c1c2072ee30f184bf097

    SHA256

    08988651e392ed3ab9d9e76dfd1038c9d79f9f12f225be64f79716f24fec2512

    SHA512

    ba10a81bdcb4f1fd7b3d0dfb572e03c29d99b529040a2881a8d815653e7743874cb924166f2fa6535d0a157a10233be106f4621f40f0d8648fdab3a00d953c75

    Download Submit

  • memory/680-0-0x0000000000400000-0x000000000041D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/680-1-0x0000000002160000-0x0000000002162000-memory.dmp

    Filesize

    8KB

    Download

  • memory/680-12-0x0000000000400000-0x000000000041D000-memory.dmp

    Filesize

    116KB

    Download