Overview

overview

7

Static

static

3

81b171b3a7...d5.exe

windows7-x64

7

81b171b3a7...d5.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25/03/2024, 19:50

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    81b171b3a7ea2d979413b429d565f1bed98f9fb900eb78c32c4cb695378ad5d5.exe

  • Size

    476KB

  • MD5

    cea1e1e976209369c230d8a449c44e39

  • SHA1

    0925c4e64ad02ac82fa8d82c14f2e5be7d7c595f

  • SHA256

    81b171b3a7ea2d979413b429d565f1bed98f9fb900eb78c32c4cb695378ad5d5

  • SHA512

    819a31ec083c12fde5716473830be6ca57fc2239d8ef029534b84a7dbfbca0391268fd87aa7b849118a94746521e4a95782407155092864b3cef29dc224f1461

  • SSDEEP

    12288:aO4rfItL8HRGzICZ7qTyPp7K9wlsDpVFd:aO4rQtGRGsc+9wlsDpVFd

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\81b171b3a7ea2d979413b429d565f1bed98f9fb900eb78c32c4cb695378ad5d5.exe
    "C:\Users\Admin\AppData\Local\Temp\81b171b3a7ea2d979413b429d565f1bed98f9fb900eb78c32c4cb695378ad5d5.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:1568
    • C:\Users\Admin\AppData\Local\Temp\5F01.tmp
      "C:\Users\Admin\AppData\Local\Temp\5F01.tmp" --helpC:\Users\Admin\AppData\Local\Temp\81b171b3a7ea2d979413b429d565f1bed98f9fb900eb78c32c4cb695378ad5d5.exe F5003AC3A9D4DE0B8E77A5D62294530238CDC3B82B5618F224C966170FB914D7BF1E526D39C47E9B85811F8C7C67DAE940EFFF6E9CA2F149C99B906F8E6C18B9
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:1888

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\5F01.tmp
          Filesize

          476KB

          MD5

          21df085f78cd81c5f70f910161d4e77e

          SHA1

          5236e26c613ea7dca2aba4d3a72b628896a7f8a7

          SHA256

          07aec4bf9176709dbd8c9a7f1dfce35bc432df466b70b2f7140e588a37f761fb

          SHA512

          74506e1856072e9aff91ede0ce1657fb599398621c68fa17711b22e8d6fc4e64e43268971ae15a2982a71fe3336641b9e8b3d7c2a4e6be20507414d48395fcee

          Download Submit