Overview

overview

7

Static

static

3

MyPayload.exe

windows7-x64

7

MyPayload.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    119s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 11:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MyPayload.exe

  • Size

    20.7MB

  • MD5

    af170f22603ad6da72992a17aea64a4c

  • SHA1

    00ca1131ff22530b373d8f35341178a30b1bf253

  • SHA256

    10b19ac099d541798adbae2d215499f018987f547ae23a4ec50f1669e827739f

  • SHA512

    cc087b11f9c8dd08789c701de9ba8a217f46df68f0d3cdbf7b0dde57aa6ced37605f206b6af32592326b8f0edcc8879be91b7b9d971f783eaedfe36cfeb7bb08

  • SSDEEP

    393216:fE5le7IKmkgrpdZXrVzG9Sdnj68n5AYfgNRaeocozUSk:fQ/HMKFgNRaZc1

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\MyPayload.exe
    "C:\Users\Admin\AppData\Local\Temp\MyPayload.exe"
    1⤵
    • Loads dropped DLL
    PID:2324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCB61.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit

  • \Users\Admin\AppData\Local\Temp\.net\MyPayload\nV5vePau9x0raHAbZ652mFWVs5lm82E=\clrjit.dll
    Filesize

    1.2MB

    MD5

    b2eb7b51bd58201cf498e83846e90110

    SHA1

    ca439759b5c5162e626d2b84ab55b93adc552e06

    SHA256

    180557694842854789457a872df849b2130098a9c2bfd70d201f77bec6f9fddb

    SHA512

    1a92064b3417b287246fadd88fea9138dfcc659283e063aab9305e424feac0d1b2c216be5f65ce7a95f0322ab3849478892ae407399aa6029a504c4c8a5884da

    Download Submit

  • \Users\Admin\AppData\Local\Temp\.net\MyPayload\nV5vePau9x0raHAbZ652mFWVs5lm82E=\coreclr.dll
    Filesize

    5.0MB

    MD5

    1c434dc8cb09095640c776385ba69691

    SHA1

    97fe8e25bebfb7d790768175a4625d07f3d4abfd

    SHA256

    3b3558c408c57be332c9595624f6d49413fe0dd43d3d5fa4626041851f77216a

    SHA512

    4bdb7c0e8571422927fbc8eec6d05959915748acce035fef336b32381922a0a54f029f959fb66cb96a89a024c11e2b94ee6948f618dd04d9ae87cc83f3f83ec8

    Download Submit

  • memory/2324-38-0x0000000001ED0000-0x0000000001F09000-memory.dmp

    Filesize

    228KB

    Download

  • memory/2324-62-0x0000000001ED0000-0x0000000001F09000-memory.dmp

    Filesize

    228KB

    Download

  • memory/2324-18-0x0000000001C00000-0x0000000001C01000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2324-19-0x000007FEF6120000-0x000007FEF662F000-memory.dmp

    Filesize

    5.1MB

    Download

  • memory/2324-12-0x0000000140010000-0x0000000140015000-memory.dmp

    Filesize

    20KB

    Download

  • memory/2324-9-0x000007FEF626A000-0x000007FEF626B000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2324-8-0x000006448A000000-0x000006448A8F5000-memory.dmp

    Filesize

    9.0MB

    Download

  • memory/2324-15-0x0000000001C20000-0x0000000001C2B000-memory.dmp

    Filesize

    44KB

    Download

  • memory/2324-63-0x0000000001ED0000-0x0000000001F09000-memory.dmp

    Filesize

    228KB

    Download

  • memory/2324-72-0x0000000022AB0000-0x0000000022B1C000-memory.dmp

    Filesize

    432KB

    Download

  • memory/2324-78-0x0000000001ED0000-0x0000000001F09000-memory.dmp

    Filesize

    228KB

    Download

  • memory/2324-93-0x0000000022870000-0x000000002289B000-memory.dmp

    Filesize

    172KB

    Download

  • memory/2324-99-0x0000000001ED0000-0x0000000001F09000-memory.dmp

    Filesize

    228KB

    Download

  • memory/2324-100-0x000007FEF6120000-0x000007FEF662F000-memory.dmp

    Filesize

    5.1MB

    Download