Overview

overview

9

Static

static

3

build.exe

windows7-x64

7

build.exe

windows10-2004-x64

9

Resubmissions

10/08/2024, 02:59

240810-dgzejaxamf 9

10/08/2024, 02:46

240810-c9bcqswfpa 9

10/08/2024, 02:40

240810-c58gnssdlj 9

Analysis

  • max time kernel
    239s
  • max time network
    240s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    10/08/2024, 02:46

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    build.exe

  • Size

    515KB

  • MD5

    13e64d45566e74747d00318830509a41

  • SHA1

    262a1c1937774380ae8777f8c4c8e267465aaa7c

  • SHA256

    645df1d69ea713e9f34698e80a0dd4963e7915729658588ba4b0765ffa656536

  • SHA512

    2b37297df7fcc059a4b9e68ea058f35133f4c1b10d6c843ecd4222c6112a91372890cbb9d3df344b5e9dbe9e130312d23e2f39fbe241076a5354b770b4a6dec1

  • SSDEEP

    12288:4nYp3HGxNCguP8Yeeu+mtGH1nydv1SIND+kEklEsde9qF3HrJIMiijE/k80bVhIM:4Yp2xogAFbuKge

Score
7/10
discovery

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\build.exe
    "C:\Users\Admin\AppData\Local\Temp\build.exe"
    1⤵
    • Loads dropped DLL
    • System Location Discovery: System Language Discovery
    PID:2616

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Roaming\d3d9x.dll
          Filesize

          370KB

          MD5

          aea198c2d08edc876d3c49e8cfd2e1e7

          SHA1

          f7e7e567a0723d29b60635b7a65635c64d985ef6

          SHA256

          da4ca61b3fb9698b00d9e63f4228e4cfe3f9464a83c36c040561120029690cf5

          SHA512

          3e58648f3d945b8eb1b713d4bd91fa8d2c71854c19aec60e238342c4963ab8d703b7c31b696f878adb6cae1a0cea5ad2a35bba68d9c1d3b130979ed05a4ab606

          Download Submit

        • memory/2616-0-0x000000007454E000-0x000000007454F000-memory.dmp

          Filesize

          4KB

          Download

        • memory/2616-1-0x0000000000230000-0x00000000002B8000-memory.dmp

          Filesize

          544KB

          Download

        • memory/2616-6-0x0000000075E90000-0x0000000075F51000-memory.dmp

          Filesize

          772KB

          Download