Overview

overview

7

Static

static

3

2024-03-28...ia.exe

windows7-x64

7

2024-03-28...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 11:49

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-03-28_b0d782a5a80a3188b9f9f73e49174933_mafia.exe

  • Size

    468KB

  • MD5

    b0d782a5a80a3188b9f9f73e49174933

  • SHA1

    85e8746bc80fe78327a0c5f15ef779c9d4d39d2f

  • SHA256

    9045f47dbd3e8485ae19f0e7c51fc17101dcc5d17082d23dbfee5cd2b60cdd0c

  • SHA512

    7cc81dc0b68195d8b14033700d2a40610f142927a0650620c59b9e4a93b3c24ce1723e59153d1be6c88538f1b3b5124cbdb0d030c47274f41340d284e9ce5065

  • SSDEEP

    12288:qO4rfItL8HGntbyy/MJQ9HlfNaSOrJAc06mc7bWmeEVGL:qO4rQtGGntbyGV1Om4jumeEVGL

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-03-28_b0d782a5a80a3188b9f9f73e49174933_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-03-28_b0d782a5a80a3188b9f9f73e49174933_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2740
    • C:\Users\Admin\AppData\Local\Temp\8F35.tmp
      "C:\Users\Admin\AppData\Local\Temp\8F35.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-03-28_b0d782a5a80a3188b9f9f73e49174933_mafia.exe FF8E36439747EC68DE6B5C5A4A544DAC4C4AEAAD5AE2E54F52FE00109BAEE6AC7E728FD49D1FDE981D77BA84082DA5105A8CF67E17F843C0A408D3C1B809A2C2
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:1624

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\8F35.tmp
          Filesize

          468KB

          MD5

          360b251175edc8f2890ae62345108aa8

          SHA1

          aea32d286c05bbacafbf87e2c7a2f3ad11a8b957

          SHA256

          33ddc71c6d990ec9bc6ce39f2ba6c9b79596337c7452510a797b344e70451481

          SHA512

          d41491bd1ecb3cc5a9aae133cd651f60e113b3f580c76f9853ce058db4eab7502a204a6ff9b2893be0f603d4c6d40d8a54292dd4f02a34963001aef54b13391f

          Download Submit