Overview

overview

3

Static

static

3

imrp_bypass.rar

windows7-x64

3

imrp_bypass.rar

windows10-2004-x64

3

RUN ME AS ADMIN.bat

windows7-x64

1

RUN ME AS ADMIN.bat

windows10-2004-x64

1

lscw.dll

windows7-x64

1

lscw.dll

windows10-2004-x64

1

menu.exe

windows7-x64

1

menu.exe

windows10-2004-x64

1

signaler.exe

windows7-x64

1

signaler.exe

windows10-2004-x64

1

stealth.dll

windows7-x64

1

stealth.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    10s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    21-07-2024 19:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    signaler.exe

  • Size

    32KB

  • MD5

    ebdeb633e326dea7ce095cce335d8d0d

  • SHA1

    135f74d8d5948d74f7b7b7b827b915b0dcc3a843

  • SHA256

    397e73ce146a0c75ac3d9d886f03cedc804409a65289fa4b5ab3d542b7ea16fe

  • SHA512

    6387be38769dbfe1fc1237e0b4013764e7dbebc65d50e2638ef60754fd7e77f8fa7ed851e2f7c008ed925fc32b3a6619cde1266f4b1dde3638fbc11f7cec72e0

  • SSDEEP

    768:mkZRPJRlNhSP00Bo4VtsMbpSfmQuNt7zF3vU:miPJ7NhSP00Bo4VtREfmQopU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\signaler.exe
    "C:\Users\Admin\AppData\Local\Temp\signaler.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2520

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads