Overview

overview

3

Static

static

1

b59559d595...7f.exe

windows7-x64

3

b59559d595...7f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    20-07-2024 11:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b59559d59598e17f3897a4deb855a133f0e0f99df4692f8d8bc5982fc5b4ca7f.exe

  • Size

    13.1MB

  • MD5

    7dcb9e716de247fede55e929fd033ece

  • SHA1

    00250cc73689b2b32bac975d3fa9625224f8b532

  • SHA256

    b59559d59598e17f3897a4deb855a133f0e0f99df4692f8d8bc5982fc5b4ca7f

  • SHA512

    7dacf2f1061518935e650404eff53ce4c5625befcec30dc42c9a24f0b2461332788ca01728df43d020efe74139a46c421baedf2516e0b5024117feae6f1ec2bc

  • SSDEEP

    196608:oPfHOe8nnKypxRanRrDeccrXLzCdrheIRUtxTxMBp6nPj9bm3ozAJE9s/0+3FFHV:G9rDeb+he8UtxTjj9b2pJ7/D1dCI

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious behavior: EnumeratesProcesses 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b59559d59598e17f3897a4deb855a133f0e0f99df4692f8d8bc5982fc5b4ca7f.exe
    "C:\Users\Admin\AppData\Local\Temp\b59559d59598e17f3897a4deb855a133f0e0f99df4692f8d8bc5982fc5b4ca7f.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2756

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\2d5c2635
    Filesize

    6.2MB

    MD5

    8323c4b6cda16d3407837c03300fee8e

    SHA1

    538ea0b4ccc1653971cd7927ba9542872f888efa

    SHA256

    1b2274561d18a95c9d26484b7042db83fefb165befd49ba59f326962c4ccddc1

    SHA512

    811a167ed55a62a565aad2c40896ba8c43019f1b70eebf55950be912e3aee9f392cc45645075f81609db908a1d43352ef9c5a1ded6173ce7929a0afdb127bbbf

    Download Submit

  • memory/2756-0-0x0000000000400000-0x000000000116A000-memory.dmp

    Filesize

    13.4MB

    Download

  • memory/2756-6-0x0000000074110000-0x0000000074284000-memory.dmp

    Filesize

    1.5MB

    Download