Overview

overview

7

Static

static

3

tor-browse....1.exe

windows7-x64

7

tor-browse....1.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    137s
  • max time network
    136s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19/07/2024, 22:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    tor-browser-windows-i686-portable-13.5.1.exe

  • Size

    100.7MB

  • MD5

    2adf67e00ae70bde1f70954373db816c

  • SHA1

    1029c390870da63fe8a71bc880d85ba087fb9174

  • SHA256

    1ab179eae92033391ad123c025afa092276a9ec39974e7e49f68e8cafb5c0e1d

  • SHA512

    f226f873d1a31f6032a4803b7db066dd110f78aa77f68655669515cba021bf67a035aeb87c46356f7129e603fcdbfb96e9aa7ccac6a31df3a2d910708707b523

  • SSDEEP

    3145728:zGes408e24bxCKSBIk9cmcwcmbAK0x9Fzreb+ZWlnJB:z4Ce24tCjBIk9cmctafKK6ZWV

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\tor-browser-windows-i686-portable-13.5.1.exe
    C:\Users\Admin\AppData\Local\Temp\tor-browser-windows-i686-portable-13.5.1.exe certutil -hashfile "tor-browser-windows-i686-portable-13.5.1.exe" sha256
    1⤵
    • Loads dropped DLL
    PID:3464

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nso90C8.tmp\LangDLL.dll
    Filesize

    5KB

    MD5

    59af5179645ae6c57e5609c8d1abdc28

    SHA1

    14bdb37a7ab76755f7916bf94597713f18be31ce

    SHA256

    918930e7ac5e423b93239f7ac6ca005ad70ac164145da8f0b19b197350ab9584

    SHA512

    ecc7a93bc6cdca7656f5859e950862ed37521d5cdc33c0cb248a334358ea3d51e6cc40cb7c094597186fc118adfd95faf7145e88ea3bf4f7668568a371b4869d

    Download Submit