Overview

overview

8

Static

static

3

fb71a9372f...18.exe

windows7-x64

8

fb71a9372f...18.exe

windows10-2004-x64

8

$_2_/Ad.exe

windows7-x64

1

$_2_/Ad.exe

windows10-2004-x64

1

$_2_/Downl...PS.dll

windows7-x64

1

$_2_/Downl...PS.dll

windows10-2004-x64

1

$_2_/QQVip...er.exe

windows7-x64

8

$_2_/QQVip...er.exe

windows10-2004-x64

8

$_2_/TXSSOSetup.exe

windows7-x64

7

$_2_/TXSSOSetup.exe

windows10-2004-x64

7

$_2_/Tencentdl.exe

windows7-x64

1

$_2_/Tencentdl.exe

windows10-2004-x64

1

$_2_/bugreport.exe

windows7-x64

1

$_2_/bugreport.exe

windows10-2004-x64

$_2_/curllib.dll

windows7-x64

3

$_2_/curllib.dll

windows10-2004-x64

3

$_2_/dlcore.dll

windows7-x64

1

$_2_/dlcore.dll

windows10-2004-x64

1

$_2_/extract.dll

windows7-x64

1

$_2_/extract.dll

windows10-2004-x64

1

$_2_/tinyxml.dll

windows7-x64

3

$_2_/tinyxml.dll

windows10-2004-x64

3

$_2_/tnproxy.dll

windows7-x64

1

$_2_/tnproxy.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-04-2024 23:51

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\$_2_\bugreport.exe command="C:\Users\Admin\AppData\Local\Temp\$_2_\bugreport.exe" wdir=C:\Users\Admin\AppData\Local\Temp\$_2_ Payload error: The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.
Report Analysis Logs

General

  • Target

    $_2_/bugreport.exe

  • Size

    274KB

  • MD5

    cae77f70a1dbc517f1281403f0a68c1e

  • SHA1

    96fdd9317aa6236ccd396dd469c46eda564326f2

  • SHA256

    18a53e047d0536e49385177d00d526f252de98d5d04e58e057c7684f820788c2

  • SHA512

    b33c4e3de966847e280fd827c39c0dfad1e65a7c24f28b7572eb35aca0c36fc0544eab3e34d5b80613543bf7c644a1b41dc3d7886e1b4923a93077ccadb2799c

  • SSDEEP

    6144:mtpUeG1HPZRRYBmH43UDCVyTBqFtfGJOENMcDN7Y7t7q9:mfGfYBmHEaCVyTsFkTMcp7YJe9

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\$_2_\bugreport.exe
    "C:\Users\Admin\AppData\Local\Temp\$_2_\bugreport.exe"
    1⤵
      PID:3640

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads