Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2024-03-29...er.exe

windows7-x64

9

2024-03-29...er.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    150s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 00:40 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-03-29_64b9a9bd4a928f2aa315d60125942269_cryptolocker.exe

  • Size

    48KB

  • MD5

    64b9a9bd4a928f2aa315d60125942269

  • SHA1

    94dc1eb53b3cd7b2a0900f0017cbecf38718e395

  • SHA256

    b9a15aae4a836f46e11e3df0821d3e1cd81e0b03e6d04de3783ea12c13adb6ad

  • SHA512

    481be48b3735d3d1abaf9a0d4f924b902c74a7fa5e74d4ff7ef245b22bdcc534fe24a4265f3d27feac1d949787a955eb1cd436b704a27963de232fc982870c20

  • SSDEEP

    768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbDu5z/hvvkH:bgGYcA/53GAA6y37nby

Score
9/10

Malware Config

Signatures

  • Detection of CryptoLocker Variants 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-03-29_64b9a9bd4a928f2aa315d60125942269_cryptolocker.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-03-29_64b9a9bd4a928f2aa315d60125942269_cryptolocker.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2852
    • C:\Users\Admin\AppData\Local\Temp\hasfj.exe
      "C:\Users\Admin\AppData\Local\Temp\hasfj.exe"
      2⤵
      • Executes dropped EXE
      PID:1988

Network

  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
    Response
  • flag-us
    DNS
    mytarta.com
    hasfj.exe
    Remote address:
    8.8.8.8:53
    Request
    mytarta.com
    IN A
No results found
  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    114 B
     114 B
     2
    2

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    114 B
     114 B
     2
    2

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    57 B
     57 B
     1
    1

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    114 B
     114 B
     2
    2

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    57 B
     57 B
     1
    1

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    114 B
     114 B
     2
    2

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    171 B
     171 B
     3
    3

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

    DNS Request

    mytarta.com

  • 8.8.8.8:53
    mytarta.com
    dns
    hasfj.exe
    57 B
     1

    DNS Request

    mytarta.com

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\hasfj.exe
    Filesize

    48KB

    MD5

    8cda154173fa41a2cdefa9a689b46e8a

    SHA1

    230acd14984411fcfe0b0770e0b4c565cd64916a

    SHA256

    03b9f4fe059ec5f99088b192d9ea89f42105a2ce783f39685dab022265b1bcfa

    SHA512

    7cb5de59fa283c126a1de3b7fcad509b472405237d95526cfd61ae927bc12f56f3d76fac00cdef5e5509847b4ba1d69012266d9693b7d82b58e1f04bfe0b16b4

    Download Submit

  • memory/1988-15-0x0000000000360000-0x0000000000366000-memory.dmp

    Filesize

    24KB

    Download

  • memory/1988-18-0x0000000000340000-0x0000000000346000-memory.dmp

    Filesize

    24KB

    Download

  • memory/2852-0-0x0000000000300000-0x0000000000306000-memory.dmp

    Filesize

    24KB

    Download

  • memory/2852-1-0x0000000000300000-0x0000000000306000-memory.dmp

    Filesize

    24KB

    Download

  • memory/2852-2-0x0000000000320000-0x0000000000326000-memory.dmp

    Filesize

    24KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.