0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2

Analysis

max time kernel
93s
max time network
163s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
07-07-2024 12:13

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe
Size

7.4MB
MD5

0301996e3483e29b94ddafaf0ae59e39
SHA1

63d70d9357c82e17865ad63a7ff7f99e653333aa
SHA256

0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2
SHA512

db4241005f9e18796ce9549fa88440beeee6c29dc413f726de69bbcddf4ea13e9660b48dec66c6d09843535935fb9a982c42c140f64e5d342cd1d4e012f19786
SSDEEP

196608:YT7WdqjCXiR3U6BoeYRxbqXpLo/SN+3qXqD:S7WdqWXiCcLGspoiUaqD

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 5 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\BIOS	0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemVersion	0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BIOSVersion	0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe

C:\Users\Admin\AppData\Local\Temp\0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe
"C:\Users\Admin\AppData\Local\Temp\0e69cb5c550ecf7dea89d46910e50bb24de461deccd3c679475bf421d7026ac2.exe"
1⤵
- Enumerates system info in registry
PID:1576

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1576-2-0x000000000058F000-0x0000000000802000-memory.dmp

Filesize
2.4MB

Download
memory/1576-0-0x0000000000400000-0x0000000001150000-memory.dmp

Filesize
13.3MB

Download
memory/1576-3-0x0000000000400000-0x0000000001150000-memory.dmp

Filesize
13.3MB

Download
memory/1576-4-0x0000000000400000-0x0000000001150000-memory.dmp

Filesize
13.3MB

Download
memory/1576-5-0x0000000000400000-0x0000000001150000-memory.dmp

Filesize
13.3MB

Download