Overview

overview

7

Static

static

3

2024-02-19...ia.exe

windows7-x64

7

2024-02-19...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/02/2024, 11:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-02-19_202312645e2999bc07372c71958af7cc_mafia.exe

  • Size

    384KB

  • MD5

    202312645e2999bc07372c71958af7cc

  • SHA1

    f58087039bc9ca67b0ebe807533967aff3549648

  • SHA256

    a3046bdc1a74d277e8087faa0af10885314c6abe5fc55180a4cbddb70a02cb96

  • SHA512

    49098a8d1e0a62b15cf3b0a07e89763a32b2317387f541f92f427c34a2d9a3332d09a18938e8b1ad2463d782fd514ad71c1b4753ddaa36273ccba6c98f769206

  • SSDEEP

    6144:drxfv4co9ZL3GBGgjODxbf7hHJkgZYp9xCeH43q4KHmiZv3y9gNZ:Zm48gODxbzcgckeHDfmaZ

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-02-19_202312645e2999bc07372c71958af7cc_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-02-19_202312645e2999bc07372c71958af7cc_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:1708
    • C:\Users\Admin\AppData\Local\Temp\474D.tmp
      "C:\Users\Admin\AppData\Local\Temp\474D.tmp" --pingC:\Users\Admin\AppData\Local\Temp\2024-02-19_202312645e2999bc07372c71958af7cc_mafia.exe 9CFE0A9EF2700B9EEA8E9301DF09BC30E7D58CF179232919BAC2B27FA91DBDD2CF77F21A8FE9F29AC8ADE65FC04F7C203DE231952254F3FAA475B783653E705C
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:1036

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\474D.tmp
          Filesize

          384KB

          MD5

          758d5e2fbc83fe6efe9cc520b78f11e6

          SHA1

          63ab6513ec724e31000e27d4197638a69ce3a517

          SHA256

          d66234cb56854c3e5eb59b5211746abdcfefef756b060cb34698f06de1041bc0

          SHA512

          91c1f78bcbbbf237a4f1dadd99fce46a3e8af028ba97393fec54c0b0d4edc4b12f7d499e19b08742ea40142dc5e9ece05df6f65e15d34aaa3a20867d436e1061

          Download Submit