Malware Analysis Report

2025-01-17 22:46

Sample ID 240603-pyks9aeg91
Target loader.exe
SHA256 36205a4cf906cabe64328a2e7c9e606a0eb8b307d70158def06360f6a7b3f2ba
Tags
score
3/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
3/10

SHA256

36205a4cf906cabe64328a2e7c9e606a0eb8b307d70158def06360f6a7b3f2ba

Threat Level: Likely benign

The file loader.exe was found to be: Likely benign.

Malicious Activity Summary


Unsigned PE

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-03 12:44

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-03 12:44

Reported

2024-06-03 12:45

Platform

win10v2004-20240508-en

Max time kernel

22s

Max time network

24s

Command Line

"C:\Users\Admin\AppData\Local\Temp\loader.exe"

Signatures

N/A

Processes

C:\Users\Admin\AppData\Local\Temp\loader.exe

"C:\Users\Admin\AppData\Local\Temp\loader.exe"

Network

Country Destination Domain Proto
US 8.8.8.8:53 217.106.137.52.in-addr.arpa udp
US 8.8.8.8:53 33.140.123.92.in-addr.arpa udp
US 8.8.8.8:53 69.31.126.40.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 209.205.72.20.in-addr.arpa udp

Files

N/A