Overview

overview

7

Static

static

3

2024-01-27...ia.exe

windows7-x64

7

2024-01-27...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 15:32 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-01-27_904b18a765ac2d514eac2a068319ab73_mafia.exe

  • Size

    479KB

  • MD5

    904b18a765ac2d514eac2a068319ab73

  • SHA1

    0b29e09a215ee1832cb50b7a36f5ae95dc138f1b

  • SHA256

    1fcf98b383e51de4b0b13c3190f6622d8e1312762f8e3c5cf16bfcbf3a2aaeb8

  • SHA512

    cf352d4eee2aeaa84a8be38826df4a5b449de416af4b4bd0e654540d1364e78ed83a1a7aa604dd6d427ebf6eba5a4a1bcfb6871c4dc3eccb15f9c39a393100fd

  • SSDEEP

    12288:bO4rfItL8HANtWZRp3bfBB71h8LDf0mr+NN/gD75UO:bO4rQtGA2l3bflh8LDf0mrW/GVUO

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-27_904b18a765ac2d514eac2a068319ab73_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-27_904b18a765ac2d514eac2a068319ab73_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2068
    • C:\Users\Admin\AppData\Local\Temp\388E.tmp
      "C:\Users\Admin\AppData\Local\Temp\388E.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-01-27_904b18a765ac2d514eac2a068319ab73_mafia.exe DE5443D2A6EA7CB5029EA7DD9BDDA5BF4D0923F06831286F02D9E4E4BD47F66A4D4D43AC90E02D7A6DED34F2AB9590047EBA735DB8B10330D7B2398908DEFB7F
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:1208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\388E.tmp
    Filesize

    479KB

    MD5

    ee7ece9d81051d7429187b9d3ef8e7b1

    SHA1

    c8278a3fecfb2f308faba40281865e87ff31143c

    SHA256

    e9cb78281b714b6d18fb149a823beebe2ba387d170398b7e0dd1f1177dcde821

    SHA512

    db34539bb4146c542b07cf4de4a5d5153ce0f41f71fc44b03bea50052e74de245054fcb849c5966ca1e5bbd9d07d19e746ebdadb802cb111cc56cbed43f14e88

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.