Overview

overview

7

Static

static

7

a075393594...fd.exe

windows7-x64

3

a075393594...fd.exe

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$TEMP/AnVir.exe

windows7-x64

3

$TEMP/AnVir.exe

windows10-2004-x64

3

AnVir.exe

windows7-x64

3

AnVir.exe

windows10-2004-x64

3

AnvirHook65.dll

windows7-x64

1

AnvirHook65.dll

windows10-2004-x64

1

CoreTemp.exe

windows7-x64

1

CoreTemp.exe

windows10-2004-x64

1

CoreTemp64.exe

windows7-x64

1

CoreTemp64.exe

windows10-2004-x64

1

ROIntegration.dll

windows7-x64

1

ROIntegration.dll

windows10-2004-x64

1

VirusTotalUpload.exe

windows7-x64

1

VirusTotalUpload.exe

windows10-2004-x64

1

reg-organi...up.exe

windows7-x64

7

reg-organi...up.exe

windows10-2004-x64

7

tweaker.exe

windows7-x64

7

tweaker.exe

windows10-2004-x64

7

usbhdd.exe

windows7-x64

7

usbhdd.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    23-02-2024 22:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CoreTemp.exe

  • Size

    369KB

  • MD5

    cd9de1a9374f0439f25916478a7eb167

  • SHA1

    197a09cfb8b06d3fb58f888632347ee44bbb2132

  • SHA256

    186e87f9b894fa985bee07e7da375df9ed0df19e2dcbae133fe7dad9d8e17aca

  • SHA512

    c90ce29821b96df83cbd5b422ef3015d20226f4f651904085ac255df6bc7c1b9d79fa5b94ff47dac9520906023aa95a44057cd1b29a9c7e8e028539f02ed0d09

  • SSDEEP

    6144:Jgph55btC+yNbcUow1BL2+abrJdRlBQZT5NQHT3XbzdwbIUKrK3BdCY6m:JYjCNnfUrJdRlBQZT5N+bfdwAKh6m

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: LoadsDriver 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\CoreTemp.exe
    "C:\Users\Admin\AppData\Local\Temp\CoreTemp.exe"
    1⤵
      PID:1724

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\ALSysIO64.sys
      Filesize

      17KB

      MD5

      5336fb23562d6bf5a92925bb0f57e26a

      SHA1

      1db73eecfa7020e38561beceb8aa8e806bcd5a17

      SHA256

      80fe7a4e2f681075e631a3de38551778fece6aa5e0ecd6e03a772a15744f6dff

      SHA512

      008729f1fd5e72eb1ec1765df201acf3d122b4204f8500b065395224052f90ba70fa541aaa46b7e1af455b8dadc9227c1c4fa6ee825beb69cd255bc66973f321

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\CoreTemp.ini
      Filesize

      803B

      MD5

      ebdb7459bf840bd2f365b5ac053254da

      SHA1

      1a74ae043c5720fd48c26b88d5961cc075b85338

      SHA256

      8bb66c4341ae44475300c9983854fc8ab5b6e1de56f26dcea0ca1b874245cd57

      SHA512

      362dc18e6a874861ff0de059e7f9a99b9bf4ce442e62a625c6aa7493859e797ada2e619743c9b7074f915758da37d52db5b458820f172383421841dcb400d24b

      Download Submit