Analysis
-
max time kernel
118s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system -
submitted
06/08/2024, 20:38
Behavioral task
behavioral1
Sample
023be8cb357d854c8df3c200a8601110N.exe
Resource
win7-20240704-en
General
-
Target
023be8cb357d854c8df3c200a8601110N.exe
-
Size
236KB
-
MD5
023be8cb357d854c8df3c200a8601110
-
SHA1
c99042d452c8cf3206b313c927ef9b3c6b6e83ec
-
SHA256
6d1d443bfc9fd96e3771acb992194f7985513852bc97583f6aabbbcb7344fa77
-
SHA512
a70673d7aabc809c5ac4a40eb26e6c3787fd6ce1c5821916507bd21cdea1955dfb1e2e95d4dd86cc43738514ff01b175684265096fd3e7a7e9d37d4d30cf9a22
-
SSDEEP
3072:tJ0Bs3o8A4M3riN6MhGkgS3PL6pb9t16n5OkhBOPC/O/FnncroP9:XwDeM7iNEkgiOb31k1ECgJ/F
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/1280-0-0x0000000000400000-0x000000000043B000-memory.dmp upx behavioral1/memory/1280-1-0x0000000000400000-0x000000000043B000-memory.dmp upx behavioral1/files/0x0005000000004ed7-7.dat upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 023be8cb357d854c8df3c200a8601110N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
236KB
MD5becc03db310aefd82c360b290bdd5867
SHA1a2a1ee790e64db3b71e68ebd870b56313022388a
SHA25600e55a14681e6f61342aa92918dff5978d7a0217c11c1e532097bf1bb5a25f98
SHA512e28f9e1585d5e0b30975e05217ac7438645d7d70d5e289069b3752e041231ad3970c354314ea7ebe364dae68dab1746449b25c0ef6c67ba0a9c79e14a3d14298