Overview

overview

6

Static

static

3

9bb03be6c7...6b.exe

windows7-x64

6

9bb03be6c7...6b.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09-03-2024 23:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9bb03be6c7d66151e4d54b7ab9e4bb06a558560a224ac14fb37d7884bcb74c6b.exe

  • Size

    965KB

  • MD5

    04a1c8e7530da93a0300835001505267

  • SHA1

    5f18f31ab71ee211a73c3cec8e1fbfca3301b863

  • SHA256

    9bb03be6c7d66151e4d54b7ab9e4bb06a558560a224ac14fb37d7884bcb74c6b

  • SHA512

    0700c88152c1bc8e0eb7b491c7d6c7dfef78122c1243094b1791c87e2f406e8bad5bc976b9fd12238e596c4f0f8fb210bcc4cca9965027b12dcfa1451a0ad918

  • SSDEEP

    12288:i2ToLD2QfWUEknSsmjj/UVF4THS2tKuXCFCTjMVJK1P5aEL3E3yhxoeVsc:ikuPfWsnnw/UV+HS2tjMVcRaT2v1

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9bb03be6c7d66151e4d54b7ab9e4bb06a558560a224ac14fb37d7884bcb74c6b.exe
    "C:\Users\Admin\AppData\Local\Temp\9bb03be6c7d66151e4d54b7ab9e4bb06a558560a224ac14fb37d7884bcb74c6b.exe"
    1⤵
    • Adds Run key to start application
    • Suspicious behavior: RenamesItself
    PID:2312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\9bb03be6c7d66151e4d54b7ab9e4bb06a558560a224ac14fb37d7884bcb74c6b.exe
    Filesize

    965KB

    MD5

    df18eec36687f09d181e2dca709931ff

    SHA1

    d512c5d7dd9323be03b852ea2f2a6c38ca744877

    SHA256

    04f52bdbaf9f02b6a1752257bb80fb5a23afd106f4a9f08ceb67a11c0c3b65bd

    SHA512

    5bf306d27471234ceb952ad7833d2372eebd2e89d234298d88f45dcd96c0b5c5b5a0a497b888c452af5f6e90953e74d9ff85c3b53fa3a15e0cdb65e580ea99ed

    Download Submit

  • memory/2312-13-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-12-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-3-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-9-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-14-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-11-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-4-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-2-0x0000000000330000-0x0000000000331000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2312-10-0x0000000000330000-0x0000000000331000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2312-15-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-16-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-17-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-18-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-19-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-20-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download

  • memory/2312-21-0x0000000000040000-0x0000000000139000-memory.dmp

    Filesize

    996KB

    Download