9ce971956a54963f6537a17b66d80e1c88db4b0a46074b0d9f10e412362e6aef | Triage

Analysis

max time kernel
122s
max time network
126s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
11/03/2024, 01:17

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

bf7720655e0f3848d1e576c97707683b.exe
Size

48KB
MD5

bf7720655e0f3848d1e576c97707683b
SHA1

0cfda106ba1e698a7a6eec38fdc86bd90154fffe
SHA256

9ce971956a54963f6537a17b66d80e1c88db4b0a46074b0d9f10e412362e6aef
SHA512

85d0a475cbf70dfd2b461051e124ddf5e47e37adebae069e9684410c81b849d33ef7a769f193bcca53e6ac0c4bc9c3f228796d8f4ed0245d398456db7c6f1ba7
SSDEEP

768:Mmr4FIS7uGvtRGGxd5XbsBni8fLdM41xv/oc:Hr4fci3X4Z7DlLoc

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 4 IoCs

description	ioc	Process
File opened for modification	C:\Windows\DealHelper.exe	bf7720655e0f3848d1e576c97707683b.exe
File created	C:\Windows\DealHelper.exe	bf7720655e0f3848d1e576c97707683b.exe
File opened for modification	C:\Windows\TimeSync.exe	bf7720655e0f3848d1e576c97707683b.exe
File created	C:\Windows\TimeSync.exe	bf7720655e0f3848d1e576c97707683b.exe

C:\Users\Admin\AppData\Local\Temp\bf7720655e0f3848d1e576c97707683b.exe
"C:\Users\Admin\AppData\Local\Temp\bf7720655e0f3848d1e576c97707683b.exe"
1⤵
- Drops file in Windows directory
PID:2980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads