Analysis

  • max time kernel
    7s
  • max time network
    20s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:55

General

  • Target

    Acura.exe

  • Size

    1.2MB

  • MD5

    a12b9eaeb350dac058adb1ed74420229

  • SHA1

    686d790fc201b1d565c19acb3cc5fd0742a89e53

  • SHA256

    a7334c7690db35b3ae2897639e53d40b699ab8894f6a28fbc7812d0e2acab7f0

  • SHA512

    f70ab61219f71bae8816497e5235fb39259f695c99528c4c6a61feedbd77428b5fecb0c54aa951e2dbd255a6c5cb2b52ed0881ba92878dbad0e2b32e21ae8e7b

  • SSDEEP

    12288:5SHPIeRQQoaiy4HLGYuXSKLqSoP/Lh7cKlz3yM8KDI3Ewepte3p1cRRje:5SHPIUdoaiy4HSjXSKLPc/VCZn0K1SJ

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Acura.exe
    "C:\Users\Admin\AppData\Local\Temp\Acura.exe"
    1⤵
      PID:2408
      • C:\Users\Admin\AppData\Local\Temp\locales\Injector.exe
        "C:\Users\Admin\AppData\Local\Temp\locales\Injector.exe"
        2⤵
          PID:2572
          • C:\Users\Admin\AppData\Local\Temp\onefile_2572_133627209903496000\DRIVER-obf.exe
            "C:\Users\Admin\AppData\Local\Temp\locales\Injector.exe"
            3⤵
              PID:2648

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\onefile_2572_133627209903496000\DRIVER-obf.exe

          Filesize

          4.6MB

          MD5

          c27b5f12b9215708b8300bfb3288d572

          SHA1

          2b1d29a76f709a77fe5bdd27867a59c5169fac7f

          SHA256

          564deee983f07b53ec5a86d99a097f0f3db634d8e5858cf41f650f7be1e25323

          SHA512

          5c80fd895d90eb38aae389ec94e613550c1b08391fdff1603667135a00e720257dc88d4b301b06b326929c1249bcbab8ce60eac05fcb214478e97f35e6b8dcb4

        • C:\Users\Admin\AppData\Local\Temp\onefile_2572_133627209903496000\python312.dll

          Filesize

          3.1MB

          MD5

          000c712aa6fe6b6d088e772226b6fb39

          SHA1

          43f68b5cba4dd5a8c83f24fb85bbb574d9e8cd40

          SHA256

          6d454be1f40f2d3b2efd9192a1a9812dbb061638f04ac4f5a54bec74bfc04179

          SHA512

          fb2a23021606ca66997c8f66a8e402f969e86dd6e560d782335ffeda8c4d264e096d103212e1cad254fff06c98d7bbaea88cf1f70e53d7af45267315f81720bc

        • \Users\Admin\AppData\Local\Temp\onefile_2572_133627209903496000\DRIVER-obf.exe

          Filesize

          3.3MB

          MD5

          fa725cfa898cc8012eade0c0ae9f26a4

          SHA1

          b42cbce05bb4a4861ce85b55a346db2a6e9ef580

          SHA256

          11d043f19c1e5ee956311e183e475d3e248c58dd3e8d9185be142e6629d75e16

          SHA512

          80bb50633ca809be8aa8e886e0479154edebc1e7f286e8ad3b89ff487e99d07929c5c5fe7a40756608d8137baffc964eb7b3b11b5b34a91c197d95e89b1a4286

        • \Users\Admin\AppData\Local\Temp\onefile_2572_133627209903496000\python312.dll

          Filesize

          3.5MB

          MD5

          470c98340457d4552d449ea3e2ffaad9

          SHA1

          64db1ae51af6036cfa3fb5e0c814d8fcc8a5f30b

          SHA256

          eab5516752fbf89788cb8d48cafe31cf9e9f35a58d99705f4689e12de6f2c3d8

          SHA512

          c0fd798172db529aecfc17909b4349a8f7daac85db79adced00e1a6784de0f4bc4a35db1dbb8af4960714cfcd54cf0b2ee66827c2f2e9c7340bad49cbc2ed875

        • memory/2408-6-0x000007FEF5A10000-0x000007FEF63FC000-memory.dmp

          Filesize

          9.9MB

        • memory/2408-4-0x0000000000550000-0x000000000055A000-memory.dmp

          Filesize

          40KB

        • memory/2408-0-0x000007FEF5A13000-0x000007FEF5A14000-memory.dmp

          Filesize

          4KB

        • memory/2408-7-0x000000001ACF0000-0x000000001AD80000-memory.dmp

          Filesize

          576KB

        • memory/2408-8-0x000007FEF5A10000-0x000007FEF63FC000-memory.dmp

          Filesize

          9.9MB

        • memory/2408-49-0x000007FEF5A10000-0x000007FEF63FC000-memory.dmp

          Filesize

          9.9MB

        • memory/2408-5-0x0000000000550000-0x000000000055A000-memory.dmp

          Filesize

          40KB

        • memory/2408-3-0x0000000000560000-0x0000000000570000-memory.dmp

          Filesize

          64KB

        • memory/2408-2-0x000007FEF5A10000-0x000007FEF63FC000-memory.dmp

          Filesize

          9.9MB

        • memory/2408-1-0x000000013FA60000-0x000000013FB92000-memory.dmp

          Filesize

          1.2MB