Overview

overview

6

Static

static

3

bfe1f05676...6d.exe

windows7-x64

6

bfe1f05676...6d.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-03-2024 04:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bfe1f056762e253b832cfd88e483a56d.exe

  • Size

    211KB

  • MD5

    bfe1f056762e253b832cfd88e483a56d

  • SHA1

    f77a4b097eeb3b6b09a53e521eaac38f47384562

  • SHA256

    e845177d783ad13b11f689f67c2a713f9ebcb7aa61432cc1d30ae4260458eb81

  • SHA512

    dc2431203f3862b2b8e7a95749d9ae708d2b0737fd0247ac6b57fd263da92c84c9eb7687611068f332dcd395681caeedbf4a8d75f2cff8de872791f8b5845c64

  • SSDEEP

    3072:aiod2vnQniCt6Cd+fsgr9FvN9vQJiMaHNr/2RwjDZ/9AFmo9AZh+U5hX:a1kvC0w+fdrHN9Rr/4wjDzpL6k

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bfe1f056762e253b832cfd88e483a56d.exe
    "C:\Users\Admin\AppData\Local\Temp\bfe1f056762e253b832cfd88e483a56d.exe"
    1⤵
    • Adds Run key to start application
    • Suspicious behavior: RenamesItself
    PID:1956

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads