Overview

overview

8

Static

static

3

1288b8afa2...87.exe

windows7-x64

8

1288b8afa2...87.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    92s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09-04-2024 21:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1288b8afa26064eab7b3258a18d02187.exe

  • Size

    162KB

  • MD5

    1288b8afa26064eab7b3258a18d02187

  • SHA1

    49055d1fc4c76be463a622975de525bc9887afad

  • SHA256

    bf9cb976bb568b8835fc85a18791cd06319d00eb94e598f91442e692056a5668

  • SHA512

    3c658e919eaef0b1fee7560f989b491ab3a9b9219daffdd1b2f84bf12e330a26a03a04ad9fae1b93a36de2261169fa8ced4326fb97ff53ed0f6f9453cdaae740

  • SSDEEP

    3072:2yNOu3ap01kqMTue7+AVETnb6Km9gFTFTHugCoReiVWeJfefVUxN:1Kp+kqKt7DV4bzm2FTFbIyVWeU2xN

Score
8/10
persistence

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\1288b8afa26064eab7b3258a18d02187.exe
    "C:\Users\Admin\AppData\Local\Temp\1288b8afa26064eab7b3258a18d02187.exe"
    1⤵
    • Drops file in Program Files directory
    PID:1108
  • C:\PROGRA~3\Mozilla\hdxpvzc.exe
    C:\PROGRA~3\Mozilla\hdxpvzc.exe -ilrweca
    1⤵
    • Executes dropped EXE
    • Drops file in Program Files directory
    PID:1012

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\PROGRA~3\Mozilla\hdxpvzc.exe
    Filesize

    162KB

    MD5

    585e6d2b5ff2241cd4dda431daca51da

    SHA1

    9999d0ada71601c6755134d1aa2f331378cd9426

    SHA256

    f4346e92d67076353ce6ea8b96fc26829d7f33b55219bd6b57d68f076850effc

    SHA512

    58f673ae3b87deb58e98d6c3214d8fae52168d8d653ca8d78f1f2ad5707561b2bc0b556ef47347de9e1c2261fc33a2313718292d5607e422491bfbde2c62340f

    Download Submit

  • memory/1012-10-0x0000000000D60000-0x0000000000DBB000-memory.dmp

    Filesize

    364KB

    Download

  • memory/1012-16-0x0000000000400000-0x000000000042C000-memory.dmp

    Filesize

    176KB

    Download

  • memory/1108-0-0x0000000000400000-0x000000000042C000-memory.dmp

    Filesize

    176KB

    Download

  • memory/1108-1-0x0000000002200000-0x000000000225B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/1108-9-0x0000000000400000-0x000000000042C000-memory.dmp

    Filesize

    176KB

    Download