Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
-
submitted
28-05-2024 01:25
General
-
Target
3412c1f22bda696d1dc5465ea789e600eda7e688be56f6f8d92546ff48b10be2.exe
-
Size
1.4MB
-
MD5
448dfd48152cc63dad54b240131e87b1
-
SHA1
1e7f8eae0ea4fbfa2e64b9ec57eeadcf01ac63da
-
SHA256
3412c1f22bda696d1dc5465ea789e600eda7e688be56f6f8d92546ff48b10be2
-
SHA512
a60fa3ebf5930d6e36674040ce503b8ef976948b9ec5e82dcee65dcf88734a270dfe49f586c1e884609c3581c59c8dc6e0bf640b5aa496261b72d006d0e54428
-
SSDEEP
12288:fEt1hA4h+caWB8E2nuaWB8E2nRfehkL2tLCjbL0u45ZWYhlYCY9B8B2Jy:S1h7GnYGnRoo2yzfJy
Score
10/10
Malware Config
Signatures
-
BlackGuard
Infostealer first seen in Late 2021.
-
Suspicious use of FindShellTrayWindow 5 IoCs
-
Suspicious use of SendNotifyMessage 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\3412c1f22bda696d1dc5465ea789e600eda7e688be56f6f8d92546ff48b10be2.exe"C:\Users\Admin\AppData\Local\Temp\3412c1f22bda696d1dc5465ea789e600eda7e688be56f6f8d92546ff48b10be2.exe"1⤵
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
-
Filesize
1.4MB
-
Filesize
9.9MB
-
Filesize
9.9MB
-
Filesize
9.9MB
-
Filesize
4KB
-
Filesize
9.9MB