Overview

overview

10

Static

static

10

release.zip

windows10-2004-x64

1

Analysis

  • max time kernel
    54s
  • max time network
    36s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-05-2024 16:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    release.zip

  • Size

    445KB

  • MD5

    06a4fcd5eb3a39d7f50a0709de9900db

  • SHA1

    50d089e915f69313a5187569cda4e6dec2d55ca7

  • SHA256

    c13a0cd7c2c2fd577703bff026b72ed81b51266afa047328c8ff1c4a4d965c97

  • SHA512

    75e5f637fd3282d088b1c0c1efd0de8a128f681e4ac66d6303d205471fe68b4fbf0356a21d803aff2cca6def455abad8619fedc8c7d51e574640eda0df561f9b

  • SSDEEP

    12288:BfJ13+GoLo2d5ifXHE8134QwYOwFSFRiLQI:BKGo8EifSQwYWI

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\Explorer.exe
    C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\release.zip
    1⤵
      PID:3540
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:876
      • C:\Users\Admin\Desktop\builder.exe
        "C:\Users\Admin\Desktop\builder.exe"
        1⤵
          PID:2168

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2168-0-0x0000000074ACE000-0x0000000074ACF000-memory.dmp

          Filesize

          4KB

          Download

        • memory/2168-1-0x0000000000A50000-0x0000000000A58000-memory.dmp

          Filesize

          32KB

          Download

        • memory/2168-2-0x0000000005A60000-0x0000000006004000-memory.dmp

          Filesize

          5.6MB

          Download

        • memory/2168-3-0x00000000054B0000-0x0000000005542000-memory.dmp

          Filesize

          584KB

          Download

        • memory/2168-4-0x0000000005410000-0x000000000541A000-memory.dmp

          Filesize

          40KB

          Download

        • memory/2168-5-0x0000000074AC0000-0x0000000075270000-memory.dmp

          Filesize

          7.7MB

          Download

        • memory/2168-6-0x00000000088A0000-0x00000000089C2000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/2168-9-0x0000000074AC0000-0x0000000075270000-memory.dmp

          Filesize

          7.7MB

          Download