Overview

overview

8

Static

static

3

103c8782a2...e2.exe

windows7-x64

8

103c8782a2...e2.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    147s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/04/2024, 05:35

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    103c8782a2a64c3af45a8cfd93e684e2.exe

  • Size

    255KB

  • MD5

    103c8782a2a64c3af45a8cfd93e684e2

  • SHA1

    e652c33d62a9e1bc0cbee4cdd9d2df529dd582a6

  • SHA256

    a6aabd2933686f10a1ebbd7d5713b931c5f7b2ac237d4bb023fa55b4f1309e30

  • SHA512

    f7d3d2fcfb421e74b75b773f1b8e90571420e5533eddbd2cbe3983cc555377d5c9a2ec6fffb3f0c3e2009678460d9cbc19cb3ce19ef55ff4fed691e084d7c28c

  • SSDEEP

    6144:ET1/g8+JxNc/VPGHgoyOAqsQ70RAJBAwUrOrh0IRuO:olMNuVPGDyOAqw+TAFqvX

Score
8/10
persistence

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\103c8782a2a64c3af45a8cfd93e684e2.exe
    "C:\Users\Admin\AppData\Local\Temp\103c8782a2a64c3af45a8cfd93e684e2.exe"
    1⤵
    • Drops file in Program Files directory
    PID:2728
  • C:\PROGRA~3\Mozilla\ptbtmmb.exe
    C:\PROGRA~3\Mozilla\ptbtmmb.exe -merxlsn
    1⤵
    • Executes dropped EXE
    • Drops file in Program Files directory
    PID:4828

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\ProgramData\Mozilla\ptbtmmb.exe
          Filesize

          255KB

          MD5

          594898b11686a8d0335e78bae9869aff

          SHA1

          bc1fd287cfee9b80d0a2454345bf2f758ad14dbd

          SHA256

          831891e6b7a9ac57b0cedfc56da9543baf9e69d810ed2ab566025fd508fefea1

          SHA512

          cc1c3f2d9f4ba2927474ee41951562e43af695fa660a6c10ebaaa1d9a21dc623003365343e90ff793f4504bd2d822a7921261d3b93a8a6ca3a3d585934e58e75

          Download Submit

        • memory/2728-0-0x0000000000400000-0x0000000000427000-memory.dmp

          Filesize

          156KB

          Download

        • memory/2728-1-0x0000000000190000-0x00000000001EB000-memory.dmp

          Filesize

          364KB

          Download

        • memory/2728-8-0x0000000000400000-0x0000000000427000-memory.dmp

          Filesize

          156KB

          Download

        • memory/4828-10-0x0000000000400000-0x0000000000427000-memory.dmp

          Filesize

          156KB

          Download

        • memory/4828-11-0x0000000000DF0000-0x0000000000E4B000-memory.dmp

          Filesize

          364KB

          Download

        • memory/4828-17-0x0000000000400000-0x0000000000427000-memory.dmp

          Filesize

          156KB

          Download