Overview

overview

5

Static

static

5

MCBEPlay/bds.exe

windows7-x64

1

MCBEPlay/bds.exe

windows10-2004-x64

1

MCBEPlay/mcbeplay.exe

windows7-x64

1

MCBEPlay/mcbeplay.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 01:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MCBEPlay/bds.exe

  • Size

    1.1MB

  • MD5

    fb17363726f7014a1ed0bed91a934755

  • SHA1

    c43b1066d680d47ddf51098f41fa70695bcb50be

  • SHA256

    03cb8b62b0f8dbad03877ff5a2da265d1df64191e37d7773f5fe54f32b267bf2

  • SHA512

    7aa17ae7869496d98a58f64ab515fdeee6d40664c4d4f379ffa9a120347df694e86e0997fa43377c84eb18a5689e4d2a5cd04c3df00d31a683242e8a2c9137e5

  • SSDEEP

    24576:IRaZROMOm8FN7TjsPnzt2heeRhQbJEOeamWbm2uGQBi:mkxOm+7TjsPnztyDMmahVQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 7 IoCs
  • Suspicious use of FindShellTrayWindow 64 IoCs
  • Suspicious use of SendNotifyMessage 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\MCBEPlay\bds.exe
    "C:\Users\Admin\AppData\Local\Temp\MCBEPlay\bds.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\MCBEPlay\logs\error.txt
    Filesize

    4KB

    MD5

    49cde9fd3a1a7f56234a742ae684f94e

    SHA1

    d9e7be73e8d973362e417c8e2613296890146987

    SHA256

    b259569c2635ed5a30240148179a11856c2b3e78d0a59b2383a3816123f883a8

    SHA512

    19f88f578728fda7cd2b20e9021865a176cd2c07bc9f42eb3e7a0454e0bf78c2adc357de28077c895fbc5c537d101c11577c479e865124a87e4270760239139e

    Download Submit

  • C:\MCBEPlay\logs\log.txt
    Filesize

    4KB

    MD5

    ff135995b3cb758b6248ac0f5cc4602c

    SHA1

    1b7ac52279ff6acff2f149b3d9867776813c63ca

    SHA256

    5f5b4ac3433e5977c7256c55adf14584a629b6294ce6e3179ee3eb371a8feb78

    SHA512

    cf1e8ec3ac5420c8eaf43e5cc9d92fcf2352b784e74360911c7eaa879190c8dd774d058e34b1b5f1b4d3be4dbd63d8cbfd1565b9787893728e340e447ba73526

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\MCBEPlay\tmp\server_error.txt
    Filesize

    12B

    MD5

    30ff4eb15654645e6c94c61ca7c74471

    SHA1

    31dd07f46f5ee5fc2fa4c5edecde244a0c0ac6ac

    SHA256

    8820e90d8def683903563d1300ccea1c7c0e94c572af1a2622a5310474b42eea

    SHA512

    60f119c2fe2d36b12229c2bd0a253b381343e98d8c5fa827adc813b360cd7134d63543801d4f96b2aa41a391846a08b84bb9f5055a4668af904518612d40561c

    Download Submit