Overview

overview

3

Static

static

3

Invinci loader.exe

windows7-x64

1

Invinci loader.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    19s
  • max time network
    18s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-04-2024 13:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Invinci loader.exe

  • Size

    445KB

  • MD5

    b9b5326f2388bac5116e60f32b514dc5

  • SHA1

    963be78a7cdc9d6ab01205a6151a222ab0f1f537

  • SHA256

    b85befa519c368d1835ce0048e4d5b3532fd93c406db00c42df410d80c7b5d0b

  • SHA512

    a7d6982be0a98037f1aa5396718564bf185df842c35935f864ec33f88d70f1a642099f963fd0649c50cbb283845f7fc89a5b356b0d2c1576ec0148ad6957e0c7

  • SSDEEP

    6144:bz+Vz+EeLMDh0G3n73HeG4C1ELstmJMKx8dudyu3SB61nRJV/oXgs:5MDh0M73HeGntmaKWdudyu71nRJeg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Invinci loader.exe
    "C:\Users\Admin\AppData\Local\Temp\Invinci loader.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of WriteProcessMemory
    PID:1868
    • C:\Windows\system32\cmd.exe
      C:\Windows\system32\cmd.exe /c
      2⤵
        PID:1416

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads