Overview

overview

7

Static

static

3

2024-01-28...ia.exe

windows7-x64

7

2024-01-28...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/01/2024, 15:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-01-28_e3e9ccec68f6cbad1578b7641576b41e_mafia.exe

  • Size

    479KB

  • MD5

    e3e9ccec68f6cbad1578b7641576b41e

  • SHA1

    48e60460ee4bc4f4cb29c76a7540a3aa975bb3cc

  • SHA256

    4f44d14a6914e6f922125de9bf81bb260d715fe3e9eca0255b2d055c68b1ba96

  • SHA512

    1302b6f8e7595715dffa89636d01cb8969fb2ca8e921e07c621da75a5b3f835e4ee9aeee93a152c61852bb1b2adaf52f4ad4ea584e559d83f1cb6442d65b1fca

  • SSDEEP

    12288:bO4rfItL8HA0MrLN/RZhe5+wIuIu9bSI75UO:bO4rQtGAp5chIuIu9XVUO

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-28_e3e9ccec68f6cbad1578b7641576b41e_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-28_e3e9ccec68f6cbad1578b7641576b41e_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2452
    • C:\Users\Admin\AppData\Local\Temp\1075.tmp
      "C:\Users\Admin\AppData\Local\Temp\1075.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-01-28_e3e9ccec68f6cbad1578b7641576b41e_mafia.exe 8BF67E0372BE26A92108FCC49FEE6881741E81EE1522481CCB1EE3CD200B1EE894523DFA57DF31F5DA4606154AD4BFFD2053003C83A4D5A9FA29277077BBD2CF
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2108

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\1075.tmp
          Filesize

          479KB

          MD5

          bddfc4658eb6c327a78b882ef6ee8efa

          SHA1

          00103935746efedfa2392739cb6384a9d56af1bf

          SHA256

          eb964a21c01bb877fe4fe44dcab4a5705f35a46b596b820124a3d5ef3a1d0999

          SHA512

          434cf14178ad80e4ec5735260d01e0e01ae0dd0e03bea44e74d94dbdd45df4ba7ca7f6e303bbbdf08a17f7b1142f98fe5652efdb97a3a7c35969a027ba8bceee

          Download Submit