Overview

overview

3

Static

static

3

bad6430643...8f.exe

windows7-x64

3

bad6430643...8f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    141s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/07/2024, 00:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bad64306434c4362fe7ce006e11302380f49079ba39c7334c82de811d8ff878f.exe

  • Size

    3.1MB

  • MD5

    f71a0b18333b0e50e49e8a65f6b1f335

  • SHA1

    08d1860058dc2f6fed40bc0e1c1c21accb62319d

  • SHA256

    bad64306434c4362fe7ce006e11302380f49079ba39c7334c82de811d8ff878f

  • SHA512

    341b609220904226515246b752f20bcd754ab436f27b9d3c7ff773c4d4e31d1710b43af962c804d709c9a888d3ffe9c7138e582e59c27c18f532cdbe41b218ae

  • SSDEEP

    49152:CWGtLBcXqFpBR6SVb8kq4pgquLMMji4NYxtJpkxhGjIHTbQ333TY:utLutqgwh4NYxtJpkxhGj333T

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\bad64306434c4362fe7ce006e11302380f49079ba39c7334c82de811d8ff878f.exe
    "C:\Users\Admin\AppData\Local\Temp\bad64306434c4362fe7ce006e11302380f49079ba39c7334c82de811d8ff878f.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1248

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1248-0-0x0000000002720000-0x0000000002721000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1248-1-0x0000000000400000-0x000000000071C000-memory.dmp

    Filesize

    3.1MB

    Download