Analysis

  • max time kernel
    144s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/01/2024, 18:44

General

  • Target

    781b1e856a21bf795c17b1944b8f72f7.exe

  • Size

    1.8MB

  • MD5

    781b1e856a21bf795c17b1944b8f72f7

  • SHA1

    3bbe074c172f7d9eb116b61599a5fac7ce1db4d1

  • SHA256

    1bd0dd7a2974618befa98457c772fa08c08a999c0161eb8407c5b17eceaff254

  • SHA512

    9692e2bd35c86c05883c97f933645f319ba99da42c708044e7d8da824349387ea3bc0185d095338c9bafd99a35f6c828369e212eaa96701188dfb981913a0169

  • SSDEEP

    24576:S6pQPxQ2JyP2r5mJV91xM7RpbwgIvs7Nxqz:SCqm2Jpr0nNM7Dus7NxO

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 4 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Drops desktop.ini file(s) 2 IoCs
  • Drops file in Program Files directory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\781b1e856a21bf795c17b1944b8f72f7.exe
    "C:\Users\Admin\AppData\Local\Temp\781b1e856a21bf795c17b1944b8f72f7.exe"
    1⤵
    • Drops desktop.ini file(s)
    • Drops file in Program Files directory
    PID:880

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Program Files\7-Zip\7-zip32.dll

          Filesize

          1.8MB

          MD5

          2a5a69638b31429e19efaad064f82c3b

          SHA1

          21b88d42fd39dddbe2bbf8d6767e2cb1d5b06e3b

          SHA256

          dc43555161301e023fe51b97e38e67a8440ef5c055cd9594cf1386e42cf241d3

          SHA512

          fee0e741f1290d086ccc736cac6cf92991c55b2caf31fac449aac650fc84a91390f8532e5a297b6517f680a39fa0e0bf3ee7f319d53c99e69b1930f2345ec129

        • memory/880-0-0x0000000000400000-0x00000000005BA000-memory.dmp

          Filesize

          1.7MB

        • memory/880-5721-0x0000000000400000-0x00000000005BA000-memory.dmp

          Filesize

          1.7MB

        • memory/880-13399-0x0000000000400000-0x00000000005BA000-memory.dmp

          Filesize

          1.7MB