Overview

overview

9

Static

static

3

280e9e8899...3c.exe

windows7-x64

9

280e9e8899...3c.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/06/2024, 10:15

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    280e9e889912c75a1f9bbdc03a1070424a29beb55fc7f89e11d575ed521ea13c.exe

  • Size

    5.7MB

  • MD5

    a08fd701089719715b3391b6001991f4

  • SHA1

    1ac8aa225798b63f16bf0fe8e8d72d228c0da857

  • SHA256

    280e9e889912c75a1f9bbdc03a1070424a29beb55fc7f89e11d575ed521ea13c

  • SHA512

    c4b2e41bb5c4acaf19b2e61f07072e1d8fde41d9dbea1275500fc6755630773ab810e5cfc207e03cedfaffc8777111625d08b678a8e58681d7006673251791bc

  • SSDEEP

    98304:b/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7NmRkVM:uMD+cpvJ/4H3nmghWoa/fsysMF4JD853

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\280e9e889912c75a1f9bbdc03a1070424a29beb55fc7f89e11d575ed521ea13c.exe
    "C:\Users\Admin\AppData\Local\Temp\280e9e889912c75a1f9bbdc03a1070424a29beb55fc7f89e11d575ed521ea13c.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3524

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          579B

          MD5

          1c18e8e4b99797e1bb44a9a15d5a7082

          SHA1

          d62b91f5efeda555f3747cc6ccd7605c9ebaf588

          SHA256

          c51f55c235b0d3bf72069cca88e70a68f61017ba12ab621215e347d31a4dfe2a

          SHA512

          2b91a5b502e390425900b39da7edd9c011cc1372002daa36da1057128e0896e55306dcc9fde6272ce1daa57ac3f82ddaea3a4c3520359f9b32e3f2319c44e315

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
          Filesize

          4KB

          MD5

          28c9e33e4c7c51fe5167c82936a82d98

          SHA1

          718d1c56945fb5aef552fa30055a9f38e14fd64a

          SHA256

          d0e7830de64d7bebaf83a0622e12c62e53ae5bf9398e0904d057b85a4a2dc446

          SHA512

          17aa15e4434ad6e0952d8e2cda246f59b23d0f5d2f777976996522556fa462f5bd7dad775d89ae0a6c9bea6dcd3ef1a9d650688584e3df08400cdf9e52f76ae2

          Download Submit