Overview

overview

7

Static

static

3

PrimoCache....0.exe

windows7-x64

7

PrimoCache....0.exe

windows10-2004-x64

7

PrimoCache...or.exe

windows7-x64

1

PrimoCache...or.exe

windows10-2004-x64

1

PrimoCache...cv.sys

windows10-2004-x64

1

PrimoCache...cv.sys

windows10-2004-x64

1

PrimoCache...cv.sys

windows10-2004-x64

1

PrimoCache...cv.sys

windows10-2004-x64

1

PrimoCache...ll.bat

windows7-x64

1

PrimoCache...ll.bat

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/05/2024, 16:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PrimoCache/reg/drv.bak/win7-8.1_srv2008-2012/rxfcv.sys

  • Size

    200KB

  • MD5

    f834c1bc19620d2b8bf580e9c6ae09ff

  • SHA1

    0ebfa5a36545d4b3c11bbd174ceb4ba5531099b6

  • SHA256

    28c88793e56daa5485f29f113067da7be7cd0fb8fdff53b90c104f5b2bfb38bf

  • SHA512

    1f36feae302c0f84f66075033809e7577e804cb71db94ed97739a5645e21e1f3464f4be3498cbfd0ee4e2eac20051105f039c787d4b16abb40339c079770cd47

  • SSDEEP

    3072:MdRr4yLesbdhK15nv8YrQGCgWuJazDFMFHq+zAlddMunTaLQ94X05Y:SHeQdhe5vLSFgHP0ldiLQ94ke

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\PrimoCache\reg\drv.bak\win7-8.1_srv2008-2012\rxfcv.sys
    1⤵
      PID:2004
      • C:\Users\Admin\AppData\Local\Temp\PrimoCache\reg\drv.bak\win7-8.1_srv2008-2012\rxfcv.sys
        C:\Users\Admin\AppData\Local\Temp\PrimoCache\reg\drv.bak\win7-8.1_srv2008-2012\rxfcv.sys
        2⤵
          PID:3888

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3888-0-0x00007FF6E7190000-0x00007FF6E71C6000-memory.dmp

        Filesize

        216KB

        Download