Overview

overview

10

Static

static

10

a253acd1b3...29.exe

windows7-x64

10

a253acd1b3...29.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24-02-2024 17:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a253acd1b335ecf61e94b26b64a42829.exe

  • Size

    2.1MB

  • MD5

    a253acd1b335ecf61e94b26b64a42829

  • SHA1

    5cf2c47fc237f796a98272b2719c223b8fb6ddf2

  • SHA256

    c6a811cbca50c9f395101667d46a6285e757f4ceff164245b7d1ed02a5eabe63

  • SHA512

    ff7f6408cde01351a348f8ad97976efd81c049fa145e6f9e5b8054130376059b95652fdbe178386a62cce364400dd4bc0b3be8e315fce87c71c9287700e097db

  • SSDEEP

    24576:XDlCJYBY0vA8fxQBJiWVoLVdUzvKUl3juQ55313N:XD7dU7KUl3F

Score
10/10
nullmixerdropper

Malware Config

Extracted

Family

nullmixer

C2

http://sornx.xyz/

Signatures

  • NullMixer

    NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.

    droppernullmixer

Processes

  • C:\Users\Admin\AppData\Local\Temp\a253acd1b335ecf61e94b26b64a42829.exe
    "C:\Users\Admin\AppData\Local\Temp\a253acd1b335ecf61e94b26b64a42829.exe"
    1⤵
      PID:2956

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2956-0-0x0000000000400000-0x000000000051B000-memory.dmp

      Filesize

      1.1MB

      Download