Analysis
-
max time kernel
142s -
max time network
145s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
21-06-2024 06:08
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
8a55c91378e4da0e34f9704900836b712d5a20e53de863966a4dabfecfe1360e.exe
Resource
win7-20240508-en
windows7-x64
1 signatures
150 seconds
General
-
Target
8a55c91378e4da0e34f9704900836b712d5a20e53de863966a4dabfecfe1360e.exe
-
Size
282KB
-
MD5
e1670719f338ff60ddab8b963cb2cecf
-
SHA1
de7567f68888c913918a7af0fcfdef7f2581fa24
-
SHA256
8a55c91378e4da0e34f9704900836b712d5a20e53de863966a4dabfecfe1360e
-
SHA512
43edd4ba11b5c04505dec0beededc2bf7e5d1f36d68f0e9b7f2200c6a49c5a0243432c56acf5c4745f8d4f9302d00f957303b713f3e760fa3e3af5e105dd2f8a
-
SSDEEP
3072:r1syLuvrXOUryeCjzVlcSLa7LfRnJlNoqPui5c5gM3Qfwa3sq08LWgw/M87tf:5DSTXnbalcAwDlNoecVQoQ0KI/
Malware Config
Extracted
Family
gcleaner
C2
185.172.128.90
185.172.128.69
Attributes
-
url_path
/advdlc.php
Signatures
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2180-1-0x0000000000540000-0x0000000000640000-memory.dmpFilesize
1024KB
-
memory/2180-3-0x0000000000400000-0x000000000042F000-memory.dmpFilesize
188KB
-
memory/2180-2-0x0000000000220000-0x000000000024D000-memory.dmpFilesize
180KB
-
memory/2180-4-0x0000000000400000-0x0000000000450000-memory.dmpFilesize
320KB
-
memory/2180-5-0x0000000000540000-0x0000000000640000-memory.dmpFilesize
1024KB