Overview

overview

9

Static

static

3

ef285ea424...79.exe

windows7-x64

9

ef285ea424...79.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-05-2024 17:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef285ea4242236a8140884a57b2746f61484ab74cc920d664d4b4a3ef38e0979.exe

  • Size

    6.3MB

  • MD5

    aaf2cf01414d472a325da54c097d29c8

  • SHA1

    b2c362af31f12a22d5173a4bd193ac73550da757

  • SHA256

    ef285ea4242236a8140884a57b2746f61484ab74cc920d664d4b4a3ef38e0979

  • SHA512

    422838328315bf97401590f45e60aefed5afdd2ed3cd1629be16d599f2eae418f5f92ecdb6739682d7b5dd898a6e9f5a67a50e59f3a733f4152965be31054c3b

  • SSDEEP

    196608:eVrsO33vp+x7YvGq6GRyPN+l3/kuxZJE:e9/33vp+x7qzywl3/kuZJ

Score
9/10
oss_ak

Malware Config

Signatures

  • detect oss ak 3 IoCs

    oss ak information detected.

    oss_ak

Processes

  • C:\Users\Admin\AppData\Local\Temp\ef285ea4242236a8140884a57b2746f61484ab74cc920d664d4b4a3ef38e0979.exe
    "C:\Users\Admin\AppData\Local\Temp\ef285ea4242236a8140884a57b2746f61484ab74cc920d664d4b4a3ef38e0979.exe"
    1⤵
      PID:5004

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\AntiPlugCfg.ini
      Filesize

      2KB

      MD5

      3b09843daea526920edbb5f501aebf9a

      SHA1

      a0dcb699f28028f52289eca096d89737952e221d

      SHA256

      fc89650c91d4b0409d3b7f2c0db586975cc70904b57b0d43294e1422c013318c

      SHA512

      64b223502b343e64a800b01489932c9cde61eb5abd67e525a1b8a4c9126e22d4c24a1f9188b9f2dfe12b2f7f7072059a215b60ebb42a592a1d30fd79326e87ef

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\AntiPlugCfg.ini
      Filesize

      2KB

      MD5

      51f779322d0f3df82c0f76deb6e79dca

      SHA1

      98abd46a53b95fa00c02fbee76643ce746380814

      SHA256

      9ecca81bc3a31352ae288ec97e5662ee841ad703faf326c755644ce6d3eeb210

      SHA512

      8cf0e1e6456980c52d912d1f129cadc839dc5686360a9807fcf8482089da4a343292e0b21dde5a152bf05edff7dd6d38fde76bf237e2117323fbc14bdb233341

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\AntiPlugCfg.ini
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\AntiPlugCfg.ini
      Filesize

      2KB

      MD5

      286a9ac531e118152a08fafc8c0ab29f

      SHA1

      3c7c306e16508887c0f6ddece2c600db778de4b7

      SHA256

      c8997ee06f4429de2e8ac09638765e823cffe2a02c973b85c19410811260cc5f

      SHA512

      fe95f2db1da3da5a0a3ebe6bfa5ce0844a9302553d978748ddffc146685490cb21f2d0d6be545f97fb56c8c218b623f622499dbece4327ba99d6be4be7e17c4c

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\AntiPlugCfg.ini
      Filesize

      3KB

      MD5

      527f54bb800787fa16893124f84c5860

      SHA1

      cb35a3cc5abc55fb12c058e5d894a77048816317

      SHA256

      5ff60732213f65d85606cdd9bfcc9e84d9235a89fb00cee5ac884627b7003d02

      SHA512

      ca570114f94f4e9d72e78bcf677201ab03484a339aa153c5a2cbfb4675d86ecc9f4dc7a33055d72e02f63d253536037ea6dabfc4bd85672f322bb4c16abb2da7

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\AntiPlugCfg.ini
      Filesize

      5KB

      MD5

      444acc43cf34a9f2fc8470a11f3b9113

      SHA1

      106c0712cdde290c1464a893a990c541e18c25d2

      SHA256

      c1ff8e32f7530d6aeb12f8d6625fd17138cad1397ba60beaa42ef5aa095ef71a

      SHA512

      ecf40e08386a44c5f537ccc75a4f07bcaac15de76138ad39c7d0d76c34f9da29941c6f1d12e263ab5a86eac34559ff64c6dd894efcdf1eee5aaff43b3b6f8b5c

      Download Submit
    • C:\Users\Admin\AppData\Local\Temp\Config.ini
      Filesize

      305B

      MD5

      bf68324e6b56889a2fc08aa43622d602

      SHA1

      0a1a5727938fec84297f3167dd9f69bcda3d1659

      SHA256

      0bb58fcd1fb04b8a0cbaf9471e71f0ac02dcd8c497b516f8ff4287431f405d3e

      SHA512

      1dcb05e57a29bc5f0bfeea27391cafd51b1914f35ed8bbe0ece092fbc108b228e3f7cdea69330407891fe500f8052f33d77986229b1503f07b5c03cf3194c307

      Download Submit
    • memory/5004-2-0x0000000000B90000-0x0000000000EF7000-memory.dmp
      Filesize

      3.4MB

      Download
    • memory/5004-3-0x0000000000400000-0x0000000001574000-memory.dmp
      Filesize

      17.5MB

      Download
    • memory/5004-4-0x0000000000400000-0x0000000001574000-memory.dmp
      Filesize

      17.5MB

      Download
    • memory/5004-664-0x0000000000400000-0x0000000001574000-memory.dmp
      Filesize

      17.5MB

      Download