Resubmissions

09/07/2024, 21:40

240709-1jl9bayglb 8

09/07/2024, 21:37

240709-1gr2saxclm 8

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 21:37

General

  • Target

    QuiverPhotos.exe

  • Size

    13.2MB

  • MD5

    6780eae3b57fd18e332df211a10d3147

  • SHA1

    590cf39c0a17b17df783c8b6d161a0d864eb19cb

  • SHA256

    9abc771cc6af7025e4c42e474aa5c9beb2a32a2bd3136914022fe3af2f242fe6

  • SHA512

    f5db53bae0626946a5d6adfb3e418e71b824d0d2f174ed7fb27368c3dbd72e0b584da899ef7dfc0ca68197e08614737a6519905ed0fe4c43e4e54c88a331b96f

  • SSDEEP

    393216:Oj6sA/GxuA60if1PutEdrClQ//mlZ6X0uqPj:ie0iluYrCq/er1P

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Processes

  • C:\Users\Admin\AppData\Local\Temp\QuiverPhotos.exe
    "C:\Users\Admin\AppData\Local\Temp\QuiverPhotos.exe"
    1⤵
      PID:2852

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2852-1-0x0000000000B30000-0x00000000032E2000-memory.dmp

      Filesize

      39.7MB

    • memory/2852-0-0x0000000000B30000-0x00000000032E2000-memory.dmp

      Filesize

      39.7MB

    • memory/2852-2-0x0000000000B30000-0x00000000032E2000-memory.dmp

      Filesize

      39.7MB