Overview

overview

7

Static

static

3

2024-01-27...ia.exe

windows7-x64

7

2024-01-27...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 15:32

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-01-27_96be47aa4a8cacc6c84a47dade202051_mafia.exe

  • Size

    479KB

  • MD5

    96be47aa4a8cacc6c84a47dade202051

  • SHA1

    eada8310b1fe3e7346fc6b0e02f47064e2eaf766

  • SHA256

    f04029c086fc8a7cfd75d4659f7662035c6df9b5afd95cb01b05c0d8c1438dc9

  • SHA512

    d155cde929732b6758b81411168713426c53e1f1a1b0641a53fc18fe2d7b613a754ee8ca64e6085be13e860b7a3efe38eb8d0628228d3082fe808f8bf37921c4

  • SSDEEP

    12288:bO4rfItL8HAvEaBPgTMpE32vFaSOT6geD75UO:bO4rQtGAvpBPgZ3fY3DVUO

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-27_96be47aa4a8cacc6c84a47dade202051_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-27_96be47aa4a8cacc6c84a47dade202051_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:1856
    • C:\Users\Admin\AppData\Local\Temp\4183.tmp
      "C:\Users\Admin\AppData\Local\Temp\4183.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-01-27_96be47aa4a8cacc6c84a47dade202051_mafia.exe 402191FCD9D369F35B5BD01B14A284189A51FF64035E18833F60CAF7051016E61267B11F5940774D9589E6DA635B48F189BFA35AE36F9C5FAAA3433E05878861
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2892

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\4183.tmp
          Filesize

          479KB

          MD5

          4d146cccfeeee6c3d9a23e04f5d938ea

          SHA1

          b94706cee8cf17e75d1f13e88ea836c44d5ab2fd

          SHA256

          3cc39dc43f403eb19d14a534c7cbcea90a11ec99d4f9e5bb83b255b009b37219

          SHA512

          e04ed5f8d9fc022474eebc2a160cdbd3647418acdb15b4af208a4ecce92bb57ee0484d7b62ddbc59cc94b927eadbc506b4c3c33f00a30468c82c1712baa51d91

          Download Submit