b7e4b4cba044fe5c1c9a4ab2eca108eff1ff3bf7ff1fde14668873b81d3564c9

Analysis

max time kernel
148s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
09-03-2024 01:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NexaByte Launcher.exe
Size

18.3MB
MD5

930282d90b92b381ab089847952f71ce
SHA1

af490ea123c879490e32985b45ac48859b70b0d8
SHA256

c6aff9c623bf6f254bd78e6ab3fdccb6a8402981708e801345d9fbc81d622c88
SHA512

5819f177751c0ef344a61d2a666a406b1e5e08d9756f710fb5a146ef21a6e106bc9b46b6d039403a325715a9330f8590c1bf0491040c1d63bd8ae6533318a931
SSDEEP

393216:f00cMwBDHJacJEE6ZElIlTFGw0CKM8FZPG6IOyS/Uv/PhH7:f1cMw5P6d8ITFGCkFOe0b

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 2904 wrote to memory of 4688	2904	NexaByte Launcher.exe	89
PID 2904 wrote to memory of 4688	2904	NexaByte Launcher.exe	89
PID 2904 wrote to memory of 4688	2904	NexaByte Launcher.exe	89
PID 2904 wrote to memory of 4216	2904	NexaByte Launcher.exe	91
PID 2904 wrote to memory of 4216	2904	NexaByte Launcher.exe	91
PID 2904 wrote to memory of 4216	2904	NexaByte Launcher.exe	91

C:\Users\Admin\AppData\Local\Temp\NexaByte Launcher.exe
"C:\Users\Admin\AppData\Local\Temp\NexaByte Launcher.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:2904
- C:\Users\Admin\AppData\Local\Temp\v1773\bin\javaw.exe
  "C:\Users\Admin\AppData\Local\Temp\v1773\bin\javaw.exe" -version
  2⤵
  PID:4688
- C:\Users\Admin\AppData\Local\Temp\v1773\bin\javaw.exe
  "C:\Users\Admin\AppData\Local\Temp\v1773\bin\javaw.exe" -jar "C:\Users\Admin\AppData\Local\Temp\NexaByte Launcher.exe"
  2⤵
  PID:4216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\.oracle_jre_usage\6502d6fd28f55398.timestamp

Filesize
56B

MD5
f4445dc2a860d5d1c728c9bacec6f4c1

SHA1
cb28d2e0c2d43e6c7a6caa4a782273ccf086ffd2

SHA256
a0b5faee87d687a5fa12d9f2253bd0460d67ccb7ee990d3a49f49b475669a4f1

SHA512
06149542a62d7c0202eb737beca268377575526d5d87ca05a0ed8ef0d68b3063791922a5e1afe3d78ed355e63288e165e5de255af89ad7dca1c45979fdb57fef

Download Submit
memory/2904-26-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download
memory/2904-30-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download
memory/4216-105-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-174-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-110-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-108-0x0000000000B70000-0x0000000000B71000-memory.dmp

Filesize
4KB

Download
memory/4216-48-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-170-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-57-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-65-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-66-0x0000000000B70000-0x0000000000B71000-memory.dmp

Filesize
4KB

Download
memory/4216-72-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-77-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-78-0x0000000000B70000-0x0000000000B71000-memory.dmp

Filesize
4KB

Download
memory/4216-83-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-86-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-91-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-97-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-102-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-166-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-40-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-162-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-120-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-115-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-124-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-130-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-135-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-140-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-144-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-148-0x0000000000B70000-0x0000000000B71000-memory.dmp

Filesize
4KB

Download
memory/4216-149-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-151-0x0000000000B70000-0x0000000000B71000-memory.dmp

Filesize
4KB

Download
memory/4216-153-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4216-157-0x0000000002A50000-0x0000000004A50000-memory.dmp

Filesize
32.0MB

Download
memory/4688-22-0x0000000002840000-0x0000000004840000-memory.dmp

Filesize
32.0MB

Download
memory/4688-10-0x0000000002840000-0x0000000004840000-memory.dmp

Filesize
32.0MB

Download
memory/4688-20-0x0000000000AC0000-0x0000000000AC1000-memory.dmp

Filesize
4KB

Download
memory/4688-31-0x0000000002840000-0x0000000004840000-memory.dmp

Filesize
32.0MB

Download
memory/4688-176-0x0000000002840000-0x0000000004840000-memory.dmp

Filesize
32.0MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads