Overview

overview

7

Static

static

3

2024-02-24...ia.exe

windows7-x64

7

2024-02-24...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/02/2024, 02:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-02-24_4525bf1707bf23cb22324079949dba4e_mafia.exe

  • Size

    479KB

  • MD5

    4525bf1707bf23cb22324079949dba4e

  • SHA1

    196908b78f45970030867da204fbd62e0742e66a

  • SHA256

    6e4f994ec695798cc4c49cd68406db049f0495dd210030ae2403f79691298220

  • SHA512

    d280aff68cb724df04712d1e6a132c80f1ded5b6e26e3e4b34fbb8edaa97c773be4795f8f35c00a85992be3ea211757b33c3d66dcd09e3e88e5edd6fd5e7407f

  • SSDEEP

    12288:bO4rfItL8HAe8woE0T8X2a/Mq7/b1IwJxE/bjx75UO:bO4rQtGAfwHg8UqzbPjiVVUO

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-02-24_4525bf1707bf23cb22324079949dba4e_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-02-24_4525bf1707bf23cb22324079949dba4e_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2980
    • C:\Users\Admin\AppData\Local\Temp\46B1.tmp
      "C:\Users\Admin\AppData\Local\Temp\46B1.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-02-24_4525bf1707bf23cb22324079949dba4e_mafia.exe 1CD7C98DC3508B1416C641E257BA6CC1E118615E7D96E1A5A9D39586849EA87CCB4F59130CD91F3A72DBA0A16827B6D126F19E5BBF5C837FB826F61F53AAF579
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:3028

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\46B1.tmp
          Filesize

          479KB

          MD5

          9dde963846db919096e36e816b5266cf

          SHA1

          5dbb859e8f43df299724ee8916a4220f0cbf1b65

          SHA256

          c976e8a5ac613a9177e1f32d5e0d22f0fe5b906b1b26b9c5bde688fbdf1630c4

          SHA512

          31abc2bac6f674b2b51755ab8e0a807fae27bb82a15f865663ee66a60b920e8f51ca68e45eeb715a93045e095e765eff80201a4b558a3742f41c24e3c0a6fd09

          Download Submit