f056a7468b07cd127c5f3c0dbf39e01c318b23cbeefc79b8b08a2c0fd5d70c27 | Triage

Analysis

max time kernel
314s
max time network
396s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
24/06/2024, 19:32

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

$R0/Uninstall Pralevia.exe
Size

126KB
MD5

08b34c1382ff200c44b3481d638becbb
SHA1

182f20bb61dce5218923e05fe5670dc22e99b0d7
SHA256

78060ef91238d7fea24c22f41ed12931eccba4f8c0becf3d0e01ff8a51c171c9
SHA512

052f70278abc8cede3dcdf90d923375ad6a720e6870c1d1377f78c8f465ac22bd392860834818de3184c91a0ad1b8b85ea56837626c754505424ca4a4c9f1c7b
SSDEEP

3072:an77v00hEoDEtauT7y1JUMaH2tvhOEA1RJCir86SrSrvlIa32:a740Ij7yVs2t0EyL+Zam

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\$R0\Uninstall Pralevia.exe
"C:\Users\Admin\AppData\Local\Temp\$R0\Uninstall Pralevia.exe"
1⤵
PID:1948

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads