Overview

overview

7

Static

static

3

a7863e85b9...9f.exe

windows7-x64

7

a7863e85b9...9f.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    133s
  • max time network
    107s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240419-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/05/2024, 01:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a7863e85b910f5dd2c0cf86aee580aa576be36155056acdcf6e883b842a3a09f.exe

  • Size

    73KB

  • MD5

    f2544d0b275e90b591c727d0fc20d2e8

  • SHA1

    d7ab80c494129a6fcfe8f1f304152bb2eadc25f5

  • SHA256

    a7863e85b910f5dd2c0cf86aee580aa576be36155056acdcf6e883b842a3a09f

  • SHA512

    204985b0407694317f0c00fd14e8ea88e58d8e2658d065091baff10f496be0674d059d697e5e219f6c314764abfb1cad7fb084a6b2ffd8af6832c5790cc27fbd

  • SSDEEP

    1536:1YF8NLCofRLCg/pdsHT+obdo8Cgzvl4ooofgke253u2Dn:uF+LCofRLCgxSzXo8CgpIo53u2Dn

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a7863e85b910f5dd2c0cf86aee580aa576be36155056acdcf6e883b842a3a09f.exe
    "C:\Users\Admin\AppData\Local\Temp\a7863e85b910f5dd2c0cf86aee580aa576be36155056acdcf6e883b842a3a09f.exe"
    1⤵
    • Drops file in System32 directory
    PID:2972
    • C:\Windows\SysWOW64\thetas-abeab.exe
      "C:\Windows\SysWOW64\thetas-abeab.exe"
      2⤵
      • Executes dropped EXE
      PID:644

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\thetas-abeab.exe
    Filesize

    70KB

    MD5

    983c1b5968e23e478a0361f3467650ed

    SHA1

    1ebdb596a568f81309fc878f62efb4bdd3c99a37

    SHA256

    e9c7d440c0aaf06959fa9b14186dc83b149af9f20ba8075040c9f280303a259d

    SHA512

    fcc2d6d426bd2baa160fc71a2f057d3732986842945ffaeffacc3c3ac54bf8db79e91ba11fc4c32a6a063eef08c68d4b5e535c182f80268233220e0147420eec

    Download Submit

  • memory/2972-3-0x0000000077802000-0x0000000077803000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2972-4-0x0000000000400000-0x0000000000403000-memory.dmp

    Filesize

    12KB

    Download