Overview

overview

4

Static

static

3

5fe746c8cf...c0.exe

windows7-x64

4

5fe746c8cf...c0.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    150s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-04-2024 21:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe

  • Size

    268KB

  • MD5

    aab7eb1555d66a09af7a6c6ca1594c3e

  • SHA1

    f5d0b388d7c71245b3cb85cb149ded14c7d9ea47

  • SHA256

    5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0

  • SHA512

    023f80082a2a5ee4c544f292009ffc66e98a27a9420c9dd4b2b044c2bebfd1751f9f9bf652ddb1339a91733938287f3843b212172ae721ce4bccc53bb66b4df1

  • SSDEEP

    6144:Nuq1yykbmMPilu34To5DTd4XQzWWgOj72JtN/Tni/N:B1y55q43485n1attTn8N

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 19 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
    "C:\Users\Admin\AppData\Local\Temp\5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe"
    1⤵
    • Drops file in Windows directory
    PID:3484
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=3856 --field-trial-handle=2228,i,521073434451423547,2311651514500527526,262144 --variations-seed-version /prefetch:8
    1⤵
      PID:1608

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Windows\win32dc\Silent Hill 4 cheat.exe
      Filesize

      269KB

      MD5

      19e80d737df6175560569db5ff90707a

      SHA1

      0a26fb7ba800e86c520178ef213e9fa3c703dafb

      SHA256

      e5c3122a3c8c55a446754f3e50f9bab01bb6be71ba5a1524c4538716cc53afb6

      SHA512

      971a2c523923e8f0747e25b4ab4b33ee75b92428e8f4a338e542e6a1405da26c7bd87ce9c5b40fd6536ed456ba7c0a774c655f1b2ac01a5be7b66a9c9e1deed6

      Download Submit

    • memory/3484-18-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-19-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-20-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-21-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-22-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-23-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-24-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-25-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-26-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-27-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-28-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-29-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-30-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/3484-31-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download