Overview

overview

5

Static

static

3

d4192fa327...8e.exe

windows7-x64

5

d4192fa327...8e.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 17:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    d4192fa327f4a7ae21acc33f4c61ce8e.exe

  • Size

    11.4MB

  • MD5

    d4192fa327f4a7ae21acc33f4c61ce8e

  • SHA1

    bd4e6b9250f593a3d2aa1f1df8f20a4839978106

  • SHA256

    e84eb6d7911c26174b2fb7d17299414b3bdf111bb7dd3f0ef39bc7ff3638cc98

  • SHA512

    31d474cebaf67e4a8a0d3b4b0d9219b2e9fc94ab959ab20972769061d00ee4b1c9cef019bee6f3a09664176f424ff8d14324e7dedf666798c9a47b83729824c2

  • SSDEEP

    196608:nNglPVmSBBEEE++CmZYOo+EEEEEEEBBBBBBmmmmmmPeXGNNNmmmmmmBBBxxxA2G4:nNiPVLBBEEE++CmZYOo+EEEEEEEBBBBn

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d4192fa327f4a7ae21acc33f4c61ce8e.exe
    "C:\Users\Admin\AppData\Local\Temp\d4192fa327f4a7ae21acc33f4c61ce8e.exe"
    1⤵
    • Drops file in System32 directory
    • Suspicious behavior: GetForegroundWindowSpam
    PID:1984

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1984-0-0x00000000001C0000-0x00000000001C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/1984-2-0x0000000000400000-0x0000000000F74000-memory.dmp

          Filesize

          11.5MB

          Download

        • memory/1984-4-0x00000000001C0000-0x00000000001C1000-memory.dmp

          Filesize

          4KB

          Download