Overview

overview

3

Static

static

3

bcb89bfda5...26.exe

windows7-x64

1

bcb89bfda5...26.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    16/07/2024, 04:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bcb89bfda5ba2c5248c36c592fa32399aa5177d1d02f2e1ed15ff43c06de5026.exe

  • Size

    6.0MB

  • MD5

    ae65db8de36f1ca158d9ac4a613538c9

  • SHA1

    1bac18e4cc6b85d573186e2c8894cd1be6918e4a

  • SHA256

    bcb89bfda5ba2c5248c36c592fa32399aa5177d1d02f2e1ed15ff43c06de5026

  • SHA512

    49ca8d4f360e649a36a388982fb883605b5dca95621f7be4ef4c6dc0b7fc17d295367cbdab428f02da77232f1c8b9dc772f9eb902e8bd4f5ef442e547e49ee87

  • SSDEEP

    98304:1+VeEILLs9RePlunREyERv+eeNLo1iQVDUQ/sM5qTFiGGDxnFWE//:WGjRPSgz/ITFiGGP1

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 5 IoCs
  • Suspicious use of SendNotifyMessage 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bcb89bfda5ba2c5248c36c592fa32399aa5177d1d02f2e1ed15ff43c06de5026.exe
    "C:\Users\Admin\AppData\Local\Temp\bcb89bfda5ba2c5248c36c592fa32399aa5177d1d02f2e1ed15ff43c06de5026.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:600

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\option.ini
    Filesize

    130B

    MD5

    fcbb1db0e7855d1d2cfc420bb4ee6501

    SHA1

    1864e624b3f584a92618a30f1f9affaa247ac07b

    SHA256

    0952d3a7e94cffa49d102a768ae4c390bd1de7f5338435a55fb340da9be165e5

    SHA512

    ed982f75b3d2e9909681986ab6d2066f53512ff01e143659eaffa5b3b459782b8cc0c3a8eac3fd6811dd19d7aa29cc76be1c488aeebe877edaad41de2e949fe5

    Download Submit

  • memory/600-0-0x00000000001C0000-0x00000000001C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/600-14-0x0000000000400000-0x0000000000A18000-memory.dmp

    Filesize

    6.1MB

    Download

  • memory/600-16-0x00000000001C0000-0x00000000001C1000-memory.dmp

    Filesize

    4KB

    Download