Overview

overview

7

Static

static

3

2024-04-20...ia.exe

windows7-x64

7

2024-04-20...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    20/04/2024, 02:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-04-20_0c201716053eea937e9d51dab5a3bb1c_mafia.exe

  • Size

    526KB

  • MD5

    0c201716053eea937e9d51dab5a3bb1c

  • SHA1

    559ab600eb41e12b16be265831de31b00123e861

  • SHA256

    4e66588cfe5ca71e54229b6685ede433fefe591713cf4de96ddf5a4b5f0a2236

  • SHA512

    37a603a3a9fe714d981f0e66301eae8ee592eb72aa0486359ffdae1885419fee3f8f7e4196846958873b2cfd7453eebdc26b7428f0a4010c35b317991cb103ec

  • SSDEEP

    6144:zooTAQjKG3wDGAeIc9kphIoDZnoKymdDWXg3CnVFLqm2K79EgMrXcicP6+:z6PCrIc9kph5UmdDWXgynXLqFcIXKz

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-04-20_0c201716053eea937e9d51dab5a3bb1c_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-04-20_0c201716053eea937e9d51dab5a3bb1c_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2876
    • C:\Users\Admin\AppData\Local\Temp\6A5.tmp
      "C:\Users\Admin\AppData\Local\Temp\6A5.tmp" --pingC:\Users\Admin\AppData\Local\Temp\2024-04-20_0c201716053eea937e9d51dab5a3bb1c_mafia.exe C4E8AA0D877D1473AF9B3FA48531DD90A1E158D8CB38E4A4FD2AFDD170CC516A3854F79304251611B9F397D59E72219CE9675C843244D0922B1333871ADBEF69
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2132

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\6A5.tmp
          Filesize

          526KB

          MD5

          5d4db5afdb73b6ca2c6b350b5a38d516

          SHA1

          2b2e631fcce047de6d44e0a47c1ba4d0e880dcbb

          SHA256

          23d34ff0b8728f8dae2b249e0306a9250df3f4701558463a344f56858288ef13

          SHA512

          fc0f73607918ac6916df26c2bd0a5d612651c4d8fc104263f850d92780e6f4b86cfde4a4ac3ba5dd34e1526845ff5fb39398ad2253994fa14104b80851df5db5

          Download Submit