Overview

overview

3

Static

static

3

04909b1dae...0N.exe

windows7-x64

3

04909b1dae...0N.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    102s
  • max time network
    105s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/07/2024, 21:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04909b1daebf9d1668a1e45e23e78330N.exe

  • Size

    2.1MB

  • MD5

    04909b1daebf9d1668a1e45e23e78330

  • SHA1

    3aa58db0135fd0aa7b47031ef4df8f15ab3212f6

  • SHA256

    ae1fcfa24d3da0a86a8f53ef4cbedb7cb4361327b80dbb652287444c2b73f31f

  • SHA512

    071cc413e9d52b21dac1560d23a39501add0cb6dc9a0b736d3e3adff1992ee0dff765f6eb58d68e6c1ce72879118a52f4c07e0f7ac02d508bdaf41fe65640bbc

  • SSDEEP

    49152:8gPG00a1yfKdek6PWdlSK3Z8ISnyZVC6/OdWTweuovdiqL:8T0NXD/1jD/Of8V

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\04909b1daebf9d1668a1e45e23e78330N.exe
    "C:\Users\Admin\AppData\Local\Temp\04909b1daebf9d1668a1e45e23e78330N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:3444

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3444-0-0x00000000743FE000-0x00000000743FF000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3444-1-0x0000000000BE0000-0x0000000000BEE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3444-3-0x00000000743F0000-0x0000000074BA0000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/3444-4-0x00000000743F0000-0x0000000074BA0000-memory.dmp

    Filesize

    7.7MB

    Download