Overview

overview

7

Static

static

3

2852ab3974...18.exe

windows7-x64

7

2852ab3974...18.exe

windows10-2004-x64

7

$TEMP/mirc632.exe

windows7-x64

7

$TEMP/mirc632.exe

windows10-2004-x64

7

$OUTDIR/uninstall.exe

windows7-x64

7

$OUTDIR/uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows7-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDIR/mIRC.dll

windows7-x64

1

$PLUGINSDIR/mIRC.dll

windows10-2004-x64

1

$TEMP/uninstall.exe

windows7-x64

1

$TEMP/uninstall.exe

windows10-2004-x64

1

$PLUGINSDI...ol.dll

windows7-x64

1

$PLUGINSDI...ol.dll

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows7-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDIR/mIRC.dll

windows7-x64

1

$PLUGINSDIR/mIRC.dll

windows10-2004-x64

1

ircintro.chm

windows7-x64

1

ircintro.chm

windows10-2004-x64

1

mirc.chm

windows7-x64

1

mirc.chm

windows10-2004-x64

1

mirc.exe

windows7-x64

3

mirc.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    16s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2024, 11:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    $TEMP/uninstall.exe

  • Size

    26KB

  • MD5

    ed623fa2550adc153bc47f5dc25e193c

  • SHA1

    bdf665961d0fad6d5929b3571ae3552d38b6a544

  • SHA256

    90de7c00c741e45a62a29521784f9f8e82ac6db9c7595f540e733a927bd79b16

  • SHA512

    f3ea64971f5aba5860f4dc297cf657e543ee78e1c0126fe78efd82b7ceb5b46c9041ab6723dbb1f41a9280f7b5b9bf9771d259cc70004b97a31cad81348b5b14

  • SSDEEP

    384:tq7watW5jFKNyIkIMDzyHZ0oK78hUZZZgYa8IRraGFIdcTtwbM4:sw5jsyIkRDzMqkhUZZZ3DIx7Ribd

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\$TEMP\uninstall.exe
    "C:\Users\Admin\AppData\Local\Temp\$TEMP\uninstall.exe"
    1⤵
      PID:712

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads