Overview

overview

10

Static

static

10

ExitLag.rar

windows7-x64

3

ExitLag.rar

windows10-2004-x64

7

ExitLag-Cr...24.rar

windows7-x64

3

ExitLag-Cr...24.rar

windows10-2004-x64

7

ExitLag-Cr...tadata

windows7-x64

3

ExitLag-Cr...tadata

windows10-2004-x64

3

ExitLag-Cr...ag.exe

windows7-x64

7

ExitLag-Cr...ag.exe

windows10-2004-x64

7

Creal.pyc

windows7-x64

3

Creal.pyc

windows10-2004-x64

3

ExitLag-Cr...AL.txt

windows7-x64

1

ExitLag-Cr...AL.txt

windows10-2004-x64

1

ExitLag-Cr...i.dart

windows7-x64

3

ExitLag-Cr...i.dart

windows10-2004-x64

3

ExitLag-Cr...ege.js

windows7-x64

1

ExitLag-Cr...ege.js

windows10-2004-x64

1

ExitLag-Cr...n.dart

windows7-x64

3

ExitLag-Cr...n.dart

windows10-2004-x64

3

ExitLag-Cr...n.dart

windows7-x64

3

ExitLag-Cr...n.dart

windows10-2004-x64

3

ExitLag-Cr...get.js

windows7-x64

1

ExitLag-Cr...get.js

windows10-2004-x64

1

ExitLag-Cr...tadata

windows7-x64

3

ExitLag-Cr...tadata

windows10-2004-x64

3

ExitLag-Cr...tadata

windows7-x64

3

ExitLag-Cr...tadata

windows10-2004-x64

3

ExitLag-Cr...up.bat

windows7-x64

7

ExitLag-Cr...up.bat

windows10-2004-x64

7

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27-02-2024 11:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ExitLag-Crack-2024/ExitLag-Main/ExitLag.exe

  • Size

    17.3MB

  • MD5

    e899953337c3f9a3dd46b64b6b0c6fd5

  • SHA1

    23d3ef9a34411c0823059c2b8c1895f730db657b

  • SHA256

    37fe6ee0b920eb7251b83bd278b49610c37ee11695f3ac83e4df211e11729d36

  • SHA512

    376a0443d6dbce0cbad02f8acc97d8c9c1dda88994e89b5537ef42cb88f98dbd2826b3a05e727f46cd95105caca155e80a034879bd4b93a02814c1539c0af5a9

  • SSDEEP

    393216:gx8/m3pWBJHDspUTLfhJtDfDgrc6XhTcl5dpfe:gmK0YUTLJvb0IQxclPpfe

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ExitLag-Crack-2024\ExitLag-Main\ExitLag.exe
    "C:\Users\Admin\AppData\Local\Temp\ExitLag-Crack-2024\ExitLag-Main\ExitLag.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2020
    • C:\Users\Admin\AppData\Local\Temp\ExitLag-Crack-2024\ExitLag-Main\ExitLag.exe
      "C:\Users\Admin\AppData\Local\Temp\ExitLag-Crack-2024\ExitLag-Main\ExitLag.exe"
      2⤵
      • Loads dropped DLL
      PID:2068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI20202\python310.dll
    Filesize

    4.1MB

    MD5

    b8e2d254a029d9002fc55a6931971dff

    SHA1

    1308ac33da862fe15f5e00b3b7da9007ebc09acf

    SHA256

    663799f4b2420e50b9c44aaae95560f1becada29fc9e57d87824c4b5a585d02f

    SHA512

    2b3dd9f7c3e135367b93b352eafb65fb5d036934a5170fd1f3e19005f0129a7d46c71e07685cc0d9f1dc078459de5afca56bd1c4896ab882569d82aa9219f882

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI20202\python310.dll
    Filesize

    4.3MB

    MD5

    63a1fa9259a35eaeac04174cecb90048

    SHA1

    0dc0c91bcd6f69b80dcdd7e4020365dd7853885a

    SHA256

    14b06796f288bc6599e458fb23a944ab0c843e9868058f02a91d4606533505ed

    SHA512

    896caa053f48b1e4102e0f41a7d13d932a746eea69a894ae564ef5a84ef50890514deca6496e915aae40a500955220dbc1b1016fe0b8bcdde0ad81b2917dea8b

    Download Submit