Overview

overview

7

Static

static

3

2024-03-07...ia.exe

windows7-x64

7

2024-03-07...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/03/2024, 14:24

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-03-07_c46606432b6f65cef60d2b6ad9c177ef_mafia.exe

  • Size

    411KB

  • MD5

    c46606432b6f65cef60d2b6ad9c177ef

  • SHA1

    128d0482c308627ca90d590e2e92ab17688a84c3

  • SHA256

    b3986bc12688377ffd7a63211dd591b9dc7f5c72df4d642d6a8eac12b2ba058d

  • SHA512

    b072dbe3f414e38ba896288c062c8d44ac91024024d38043159694c7c5e19a314c1d8b59683391c7612fd77ad0d37ee6f26bb13689c4a2a318e903cb7131b028

  • SSDEEP

    12288:gZLolhNVyE/hJo1ZvHc+yVCEfZbM+1qHI:gZqhOE5JCZv8+yVCiZbMO

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-03-07_c46606432b6f65cef60d2b6ad9c177ef_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-03-07_c46606432b6f65cef60d2b6ad9c177ef_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2196
    • C:\Users\Admin\AppData\Local\Temp\7F6D.tmp
      "C:\Users\Admin\AppData\Local\Temp\7F6D.tmp" --pingC:\Users\Admin\AppData\Local\Temp\2024-03-07_c46606432b6f65cef60d2b6ad9c177ef_mafia.exe 1B3CEC57953E805EEE6802702340FFE1F7E901B53B8434E7B6F7F404C4379973DE21D91395F7B419A4852A39C163739DA2F0BC62F3C41C89005A9F410F27E4F5
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2168

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\7F6D.tmp
          Filesize

          411KB

          MD5

          b09843733b9ed9ebb89d202f6b38fa5b

          SHA1

          591c37d02547754689a36ee1647516287abfb488

          SHA256

          755fd86b17fd33f593581905a6616a8e7db6c8bf2e33aa2c493128f989000897

          SHA512

          71e75417580ca1dc1300bc3bae3eb6ac7b79f61f3df22051d449e94a3ef56eb429a23fcace98678ee1ec38520697d4fa58e1fcb6d4a2c13d3bd9f05be4a1183e

          Download Submit