Overview

overview

8

Static

static

3

9483ff00f8...3b.exe

windows7-x64

8

9483ff00f8...3b.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    93s
  • max time network
    113s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19/04/2024, 00:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9483ff00f82029cc9d9e3a6b485a945a554d7cb6c2bf97a6df328c4c722a1f3b.exe

  • Size

    299KB

  • MD5

    213cdc742742ca1fceaaa14a9682c754

  • SHA1

    dfc977b52f57e2b11a2fa811264468db9026ee06

  • SHA256

    9483ff00f82029cc9d9e3a6b485a945a554d7cb6c2bf97a6df328c4c722a1f3b

  • SHA512

    790a3a018c14a133ac8ff8a1d8fcf7e309187249120cea166b64c2508cefebf944a82b1a95820be66adf5303514bd0bfcf37afd0ca8f2ad1c9f33b950da23abe

  • SSDEEP

    6144:xbF3pSw85DxsoKrlrPE3TtaoybMSeLng4TS:xB3/YxsoKrlriTpSeLndTS

Score
8/10
persistence

Malware Config

Signatures

  • Modifies AppInit DLL entries 2 TTPs
    persistence
  • Executes dropped EXE 1 IoCs
  • Drops file in Program Files directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9483ff00f82029cc9d9e3a6b485a945a554d7cb6c2bf97a6df328c4c722a1f3b.exe
    "C:\Users\Admin\AppData\Local\Temp\9483ff00f82029cc9d9e3a6b485a945a554d7cb6c2bf97a6df328c4c722a1f3b.exe"
    1⤵
    • Drops file in Program Files directory
    PID:2316
  • C:\PROGRA~3\Mozilla\pyhdnkm.exe
    C:\PROGRA~3\Mozilla\pyhdnkm.exe -iiopsym
    1⤵
    • Executes dropped EXE
    • Drops file in Program Files directory
    PID:2644

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\PROGRA~3\Mozilla\pyhdnkm.exe
    Filesize

    299KB

    MD5

    85fc646c9578190faf6b2260d5905e3f

    SHA1

    0d0a01058e19023ef9fdca2987f42800965c8497

    SHA256

    5858e308f5d9ada16b56ab8e5253c7a3538e2058be0f091eed3437a85fe6c17e

    SHA512

    0053ca476c58b852d874e8ee3f056390368e37360ae5191cb0e64cb1005db4bcc44c83ae77ce8b0f5020ff50c9d6966cadc5b8f931e795061a94753a578b24f3

    Download Submit

  • memory/2316-0-0x0000000000400000-0x0000000000469000-memory.dmp

    Filesize

    420KB

    Download

  • memory/2316-1-0x00000000021E0000-0x000000000223B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/2316-2-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/2316-6-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/2316-8-0x00000000021E0000-0x000000000223B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/2644-9-0x0000000000C50000-0x0000000000CAB000-memory.dmp

    Filesize

    364KB

    Download

  • memory/2644-10-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/2644-12-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download