Analysis
-
max time kernel
67s -
max time network
53s -
platform
windows10-2004_x64 -
resource
win10v2004-20240419-en -
resource tags
arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system -
submitted
27-04-2024 22:15
Static task
static1
Behavioral task
behavioral1
Sample
79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe
Resource
win10v2004-20240419-en
General
-
Target
79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe
-
Size
2.6MB
-
MD5
db0f56475dd653aa6443cb53ee96e272
-
SHA1
f7dd2dd48c6d9ac62febb87b03df1e8f76b3b373
-
SHA256
79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f
-
SHA512
7ac3de6dcce439b2d34340985d6623bb1eaf9fbf9febfa6bc18208f160f409d3020cfa7c33c3e8c4fd19fd403594ea0d202ca31e803f6004e5da9b94a78ae8b2
-
SSDEEP
49152:Dbclx6BpX9jh23BaCjLwaEYnHTSdo/SMRIDtELkDnIca3b+vm4gLW6Ym6L1VWr+T:njokawa/HP/bDwDnItb+O/KZWr+55
Malware Config
Signatures
-
Drops file in Program Files directory 5 IoCs
Processes:
79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exedescription ioc process File opened for modification C:\Program Files\Signalyst\HQPlayer 5 Desktop\HQPlayer5Desktop.exe 79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe File opened for modification C:\Program Files\Signalyst 79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe File opened for modification C:\Program Files\Signalyst\HQPlayer 5 Desktop 79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe File created C:\Program Files\Signalyst\HQPlayer 5 Desktop\__tmp_rar_sfx_access_check_240597187 79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe File created C:\Program Files\Signalyst\HQPlayer 5 Desktop\HQPlayer5Desktop.exe 79fcaa37fcbe59320144f4f8cba6f2589a8e9bc4424f8a3a6bcdd12c92a9465f.exe