Overview

overview

1

Static

static

1

2024-05-14...ia.exe

windows7-x64

1

2024-05-14...ia.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/05/2024, 16:22

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-05-14_0580e433e9a0accdf0b8500568889a95_mafia.exe

  • Size

    1.9MB

  • MD5

    0580e433e9a0accdf0b8500568889a95

  • SHA1

    85e0630b88c20a0ad7cc7b87893c0c8322648401

  • SHA256

    cf54f149255e35280a91980949779ac3fb682de197f3bc2c659082aa5f271621

  • SHA512

    4292151618a0b7d9cae59c92512a1b6f6156a93541612f2754cfd7cf651c56892eb8a3ffebf4d19fe04189dc58f9121feaa487a7a933cc438568611b69e33bc9

  • SSDEEP

    24576:6EV0W4q8SqJ7Es7QwY2vvUBpyyb6+dNz/B0snnypOnrnj+e:1V0WRQ7Es79Y2UBN6+dNLGsnn/ee

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-05-14_0580e433e9a0accdf0b8500568889a95_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-05-14_0580e433e9a0accdf0b8500568889a95_mafia.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2120

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2120-0-0x0000000000180000-0x0000000000181000-memory.dmp

          Filesize

          4KB

          Download

        • memory/2120-1-0x0000000000180000-0x0000000000181000-memory.dmp

          Filesize

          4KB

          Download