Overview

overview

7

Static

static

7

6cf7eb6908...e0.exe

windows7-x64

7

6cf7eb6908...e0.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/07/2024, 00:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6cf7eb6908cdfca4b5c39588c0558f33fc7e5eb2ddde61d50e905bc3aed5f5e0.exe

  • Size

    83KB

  • MD5

    1cbd9ea7b86cfd513ce115f1769dc9f1

  • SHA1

    12f4c4696260aab44badbae6cc143c13daa7eca3

  • SHA256

    6cf7eb6908cdfca4b5c39588c0558f33fc7e5eb2ddde61d50e905bc3aed5f5e0

  • SHA512

    aeb8d1d079d57877a8d2ead897a7855531bc9ccc2881d39151c2ad9adc1833b199bb282762a1d246781435689a6c48e0d2090f5930510168ed22286fd03f7c73

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+lK:LJ0TAz6Mte4A+aaZx8EnCGVul

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\6cf7eb6908cdfca4b5c39588c0558f33fc7e5eb2ddde61d50e905bc3aed5f5e0.exe
    "C:\Users\Admin\AppData\Local\Temp\6cf7eb6908cdfca4b5c39588c0558f33fc7e5eb2ddde61d50e905bc3aed5f5e0.exe"
    1⤵
      PID:2420

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Temp\rifaien2-pYRUDSzW3rGNrGaF.exe
            Filesize

            83KB

            MD5

            5059a91f3bcbe03d288bc56a4f7f7201

            SHA1

            00a274200af8aa3f5a59dfefa5d73b970cff63ca

            SHA256

            2c48acb102130c81a62e92d6b5aa5ff709b67f04e74cec7f0f5b7b69e67b5e23

            SHA512

            a8710fdef4c1cd1920e9811825fc75d2a2a56602a287eca8f49497c74e32d10c884ee9b8f1277de9bdd4d5b042156cc880fe2414ed808a031129b9478bd52c9d

            Download Submit

          • memory/2420-0-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/2420-1-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/2420-7-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/2420-14-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/2420-22-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download

          • memory/2420-28-0x0000000000400000-0x000000000042A000-memory.dmp

            Filesize

            168KB

            Download