Analysis

  • max time kernel
    140s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    11-07-2024 20:15

General

  • Target

    Desklets/Weather/Weather.exe

  • Size

    428KB

  • MD5

    6535c09f6bde97966fcd1204a8b2dbea

  • SHA1

    69145fe65129e74d1e43f825bce8e6261cbd76c0

  • SHA256

    eae843e68e66ad9fa9f30b272e845989759473b3a6d13fcdb168fae0ea019fff

  • SHA512

    59799f9bc34ec1329a6f3735bfbffee51706bce940dbe78d21f3918a03cc699cf0cea4637a5f64a1cb899ce5270bfb73c6c1bbe219ce0095847986307c5a7511

  • SSDEEP

    6144:pZKpSPYPtjcFlLqYVPhwFP35YuNlrl1tCcE4bHeVsMC2oAYOGO/Wtz0tNSN:pZsVjcFUYnwFhRN1EcJHcsMSrr

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Processes

  • C:\Users\Admin\AppData\Local\Temp\Desklets\Weather\Weather.exe
    "C:\Users\Admin\AppData\Local\Temp\Desklets\Weather\Weather.exe"
    1⤵
      PID:1696

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1696-0-0x0000000000400000-0x000000000051F000-memory.dmp

      Filesize

      1.1MB

    • memory/1696-1-0x0000000000230000-0x0000000000231000-memory.dmp

      Filesize

      4KB

    • memory/1696-14-0x0000000000400000-0x000000000051F000-memory.dmp

      Filesize

      1.1MB

    • memory/1696-16-0x0000000000230000-0x0000000000231000-memory.dmp

      Filesize

      4KB