Malware Analysis Report

2025-01-19 07:52

Sample ID 240609-fe5jwaef79
Target Update.exe
SHA256 a4711b64695282d32036ee09ab1a67bc55ba8fa98ff50bf3836539edf5861d52
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

a4711b64695282d32036ee09ab1a67bc55ba8fa98ff50bf3836539edf5861d52

Threat Level: No (potentially) malicious behavior was detected

The file Update.exe was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary

N/A

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-09 04:48

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-09 04:48

Reported

2024-06-09 04:55

Platform

win11-20240419-en

Max time kernel

147s

Max time network

152s

Command Line

"C:\Users\Admin\AppData\Local\Temp\Update.exe"

Signatures

N/A

Processes

C:\Users\Admin\AppData\Local\Temp\Update.exe

"C:\Users\Admin\AppData\Local\Temp\Update.exe"

Network

Files

memory/5052-0-0x0000000074D8E000-0x0000000074D8F000-memory.dmp

memory/5052-1-0x00000000005C0000-0x0000000000736000-memory.dmp

memory/5052-2-0x0000000074D80000-0x0000000075531000-memory.dmp

memory/5052-5-0x0000000074D80000-0x0000000075531000-memory.dmp

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-09 04:48

Reported

2024-06-09 04:53

Platform

android-x86-arm-20240603-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A