Overview

overview

7

Static

static

7

785c035312...6f.exe

windows7-x64

7

785c035312...6f.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    141s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 20:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    785c0353123908b46eeaf9159aa6606f.exe

  • Size

    398KB

  • MD5

    785c0353123908b46eeaf9159aa6606f

  • SHA1

    fb7a5a4906ea00082d4d7d67c47d3a8dc852a18f

  • SHA256

    e43c8688ab426413674cd04aa9171083bb1113c57affe0d6896f95deaad47594

  • SHA512

    9c2503ff5918561ebd61d7b2149ed60267a6f9993a60fde45bb01141b468ce416057a57b9367d07b32ab450a9a43cccf7b663bcf5709b102ee2980d97e1a3d2a

  • SSDEEP

    12288:tQt3YaXVedjuVIUhYXecsbgeasf3SdMK8LtlIxUHvM1c:2Iy7VICYXecsEYfaMK8LbIeH6c

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\785c0353123908b46eeaf9159aa6606f.exe
    "C:\Users\Admin\AppData\Local\Temp\785c0353123908b46eeaf9159aa6606f.exe"
    1⤵
      PID:2508

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2508-0-0x0000000000400000-0x0000000000552000-memory.dmp

      Filesize

      1.3MB

      Download

    • memory/2508-1-0x0000000000400000-0x0000000000552000-memory.dmp

      Filesize

      1.3MB

      Download

    • memory/2508-2-0x0000000000400000-0x0000000000552000-memory.dmp

      Filesize

      1.3MB

      Download