Overview

overview

7

Static

static

3

2024-03-14...ia.exe

windows7-x64

7

2024-03-14...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 05:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-03-14_062cd9ca7fd185a76f05fbd4c92dacbc_mafia.exe

  • Size

    476KB

  • MD5

    062cd9ca7fd185a76f05fbd4c92dacbc

  • SHA1

    924fb28fcff445e4edc1543f1f3d3b6fa69ac94d

  • SHA256

    0307cfe4b59db89a314aaacf79998ae1b67c5f5d331bc2e0521f9e0da81fa788

  • SHA512

    eadda42ea6f2697252381d0b2492c7a5871cad361399132c8de56f111f20f4282c9ce1dcd8b3fdbd52c692258f107bfe4722fdf5b1481ce03ff555eec23151f3

  • SSDEEP

    12288:aO4rfItL8HRe6Ll5rR6v0ERBCrm8IbH2tXR7K9wlsDpVFd:aO4rQtGRR5rwsER4rm8Iath+9wlsDpVT

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-03-14_062cd9ca7fd185a76f05fbd4c92dacbc_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-03-14_062cd9ca7fd185a76f05fbd4c92dacbc_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:1740
    • C:\Users\Admin\AppData\Local\Temp\513C.tmp
      "C:\Users\Admin\AppData\Local\Temp\513C.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-03-14_062cd9ca7fd185a76f05fbd4c92dacbc_mafia.exe 32B967A34B68E2B64E952A45B95B84893DB6D837EDF938AB8EAF477E108AA3869F708C89E3B6F6B7F05E4D8DDEFDE4B703DC6BD3200734AD3B63B1534AAECCED
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:1156

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\513C.tmp
          Filesize

          476KB

          MD5

          2df097d31add4982fc2623a36ed2d23a

          SHA1

          2444d72b7b474debb5400518d6f980cfe71416d8

          SHA256

          6c40e99b8c88c7787b2e1ed78090bdf2e6c107ba988a206c45612640a008a103

          SHA512

          38a027cc46b1b28ac365704111e1126c4d2ddfd3ee86b9791ff0b825a76750164b6a122dd4695701d871ddffd0fc955560dbfe35eae46d303590b8be67653287

          Download Submit