Overview

overview

10

Static

static

5

Solicitar ...00.rar

windows7-x64

3

Solicitar ...00.rar

windows10-2004-x64

3

Solicitar ...00.exe

windows7-x64

10

Solicitar ...00.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    134s
  • max time network
    108s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/06/2024, 16:31

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Solicitar lista 04062024 66785000.rar

  • Size

    539KB

  • MD5

    1e675bfa93cdcb75beecc6cb8bea3deb

  • SHA1

    ce27f652186ed25971a29d7bbba74f782c3224e1

  • SHA256

    02c5409b4b4bf99f4b7c5822302a9431bca9ce4b4d67050ba0a6be00c9823347

  • SHA512

    b5288d0128f62e96b61ab9c35b73cf696f302ea18eccce973553effed778861ec3166fa3da617d303ec9def9a9f6373b29c27c841094c41f41fc03f20a461c9b

  • SSDEEP

    12288:7rBoF/oa6Xh0uhG5l2GB3ktHzSSoaJ+6jLy1wkNTOH8kRa:7rk/o/Xh095l2uUtmS1Ywk4FRa

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\Solicitar lista 04062024 66785000.rar"
    1⤵
    • Modifies registry class
    PID:3440
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4456

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads