Overview

overview

3

Static

static

3

79e3445f07...c2.exe

windows7-x64

1

79e3445f07...c2.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 09:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    79e3445f0706a80e3cbb5741d93ac1c2.exe

  • Size

    172KB

  • MD5

    79e3445f0706a80e3cbb5741d93ac1c2

  • SHA1

    e50fd1da04d0c9bd844956283e0b49f031097448

  • SHA256

    e2a3a88e502b390a51d3cfc59da12757f4f161c22c155f540e5dce08e2d2ece7

  • SHA512

    15acd54818746b4874c662f0152e42aaaecad8c8f8d4b0520218992c753ad28dbcaf101275b6f7335c188277978f45cb0e10ad54ca122e5b59d3b2cdfc11fd1f

  • SSDEEP

    3072:i2EQhaXe/i/iJijRjrxPzX/YvVHhVV5rbW2Dv6VLra:i1XDhjhxLPYT5rbxJ

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\79e3445f0706a80e3cbb5741d93ac1c2.exe
    "C:\Users\Admin\AppData\Local\Temp\79e3445f0706a80e3cbb5741d93ac1c2.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2964

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2964-0-0x0000000001000000-0x0000000001033000-memory.dmp

          Filesize

          204KB

          Download

        • memory/2964-1-0x0000000001000000-0x0000000001033000-memory.dmp

          Filesize

          204KB

          Download