76b9b963aec078bd0a67881910d9e911be928531bea50d4e5a0da6163de51be7

Analysis

max time kernel
122s
max time network
128s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
28-07-2024 00:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

76b9b963aec078bd0a67881910d9e911be928531bea50d4e5a0da6163de51be7.exe
Size

144KB
MD5

808c62f0c02139ac90605c6bf2e8fc51
SHA1

4ca343ec6a01f4b5b5252987f30d07cfd1bda2d5
SHA256

76b9b963aec078bd0a67881910d9e911be928531bea50d4e5a0da6163de51be7
SHA512

ebf7559b530ef2fab4ca31a026b76100906c8906d52ddb17de197b08e8905b52c62c474a157579f7fe62b231284b96ae7cdd687cee8f23f3e842c2a5e9956d6e
SSDEEP

3072:6pWpBwchcwDMTcfWVP2ZQfq6Tl7j66sfmTk3WdK1B:PtWVWQVm6S3WYB

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	76b9b963aec078bd0a67881910d9e911be928531bea50d4e5a0da6163de51be7.exe

C:\Users\Admin\AppData\Local\Temp\76b9b963aec078bd0a67881910d9e911be928531bea50d4e5a0da6163de51be7.exe
"C:\Users\Admin\AppData\Local\Temp\76b9b963aec078bd0a67881910d9e911be928531bea50d4e5a0da6163de51be7.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:2120

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads