Overview

overview

7

Static

static

7

TITAN_BP_9.8_.exe

windows11-21h2-x64

7

Analysis

  • max time kernel
    97s
  • max time network
    90s
  • platform
    windows11-21h2_x64
  • resource
    win11-20231215-en
  • resource tags

    arch:x64arch:x86image:win11-20231215-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    14-02-2024 11:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    TITAN_BP_9.8_.exe

  • Size

    12.6MB

  • MD5

    6f38f1b17cd3f1417db386eb2500b104

  • SHA1

    fefdf655e97fbf104b62f3814ed9867b9f97eb48

  • SHA256

    4771acdb97a9aeb224b02f82e92d86ee42dc6dae799de90efd922e630fd78f06

  • SHA512

    8f59c1aa5e4ba9e64aef4676f19649f326a1a9f417f770565b9fc097a50c5a71e1cf21e8e9a403fd06df2d8437e5570852550839ceb907a5a500485bfc606b53

  • SSDEEP

    196608:Wkmay8eKY2VhdlS611YXnxKdyvpeJJWNhpboM+6FO30ZjBZC8frM8q:Woy8eKHhTTYhKd+QWNjbxlFE0Zjpf48q

Score
7/10
themida

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

    themida

Processes

  • C:\Users\Admin\AppData\Local\Temp\TITAN_BP_9.8_.exe
    "C:\Users\Admin\AppData\Local\Temp\TITAN_BP_9.8_.exe"
    1⤵
      PID:1212
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:1300
      • C:\Users\Admin\AppData\Local\Temp\TITAN_BP_9.8_.exe
        "C:\Users\Admin\AppData\Local\Temp\TITAN_BP_9.8_.exe"
        1⤵
          PID:2088

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1212-0-0x00000000007D0000-0x0000000002448000-memory.dmp

          Filesize

          28.5MB

          Download

        • memory/1212-1-0x00000000007D0000-0x0000000002448000-memory.dmp

          Filesize

          28.5MB

          Download