Overview

overview

7

Static

static

3

2eb1a17c7e...0N.exe

windows7-x64

7

2eb1a17c7e...0N.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    93s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/07/2024, 02:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2eb1a17c7e88651447c5afe490bcac70N.exe

  • Size

    369KB

  • MD5

    2eb1a17c7e88651447c5afe490bcac70

  • SHA1

    e066463ffb7b9a3e3285b456814cdb5bbb2d703d

  • SHA256

    ae646bcacb3e7ef79482b8ae554481a94fd2a027c542a7f1ef6ec2575da599f2

  • SHA512

    33be918e38fd03a371cf4c3f98172c11b4f3a95a4e938bbb1dcfe5eedf4f9a71cf4dd23dd25751140834aff88e10537791874645ff6bfa007932da735757859e

  • SSDEEP

    3072:3j9PjK7mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmz:35PjQ

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2eb1a17c7e88651447c5afe490bcac70N.exe
    "C:\Users\Admin\AppData\Local\Temp\2eb1a17c7e88651447c5afe490bcac70N.exe"
    1⤵
    • Drops file in System32 directory
    PID:5100
  • C:\Windows\SysWOW64\svrwsc.exe
    C:\Windows\SysWOW64\svrwsc.exe
    1⤵
    • Executes dropped EXE
    • Drops file in System32 directory
    PID:4616

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\svrwsc.exe
    Filesize

    739KB

    MD5

    d973e0cb32024974cf15276a87f317a0

    SHA1

    5a0d1fc34919c6e7ad52f995f378e0bb681c6bd8

    SHA256

    e0c36c253917cacd0d41d76886f9abbbbc0a35ad610dc7532eaf1d39ac3685df

    SHA512

    228be704beaf296ca2f776ebd6994449b964a327081fe1a7503ea56e76e99cb32b54deb8daae750800f737ff0050f8d4873cf3f94765a5ccb1d0eaf96c41c302

    Download Submit