Analysis

  • max time kernel
    90s
  • max time network
    100s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240611-en
  • resource tags

    arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    18-06-2024 15:00

General

  • Target

    EcoH Client/demo_extract_chat.exe

  • Size

    890KB

  • MD5

    3fc94b19de41b471b760fe1859b9f99c

  • SHA1

    9f31297187d40565a8a94118a8b39e41551b3ae8

  • SHA256

    9f61c7c8bb4566a72c6030243bd8b222585309bdeb96030407539b939bfafd5f

  • SHA512

    f4afab9325a4877c15a6d3e12e1960937621bb21b11c3fb7bbee0e194d1266995cc05fe0f674f250f31a7c3b95db7a503bcd71c77fe8199cbcaf47997c296b7b

  • SSDEEP

    12288:1SJZIVsS/870FLWaagX7fEdqzgB2XclSrYJFgt6UzRKYc0UFF4Vjhp91Qhdhck7G:sZEsS/jc0w5jvNJ6oM1leGn

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\EcoH Client\demo_extract_chat.exe
    "C:\Users\Admin\AppData\Local\Temp\EcoH Client\demo_extract_chat.exe"
    1⤵
      PID:4692

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4692-0-0x00007FF67AD30000-0x00007FF67AE25000-memory.dmp
      Filesize

      980KB

    • memory/4692-2-0x00007FFF45880000-0x00007FFF4590A000-memory.dmp
      Filesize

      552KB

    • memory/4692-4-0x0000000062E80000-0x0000000062EA6000-memory.dmp
      Filesize

      152KB

    • memory/4692-3-0x0000000064940000-0x0000000064955000-memory.dmp
      Filesize

      84KB

    • memory/4692-1-0x00007FFF5AEC0000-0x00007FFF5AECE000-memory.dmp
      Filesize

      56KB