Analysis

  • max time kernel
    14s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    18-08-2024 03:24

General

  • Target

    baro.exe

  • Size

    6.2MB

  • MD5

    1c4c8fdffa62d2c6b0ca681fda48f86c

  • SHA1

    60efa26ff63e91b8762d36b453f14593ff1acf8f

  • SHA256

    0a24747312d2d47cdc2b8b250c0a692f57d251a1725ca5e1434fb23cdaf56c63

  • SHA512

    3118d7b6b0f9a2c784ba56ef5335b45852f3d1019960bb6366d9a1e84e6e20ca89e83de5ea3b27b16277b50a9c7a2b4e70b19f0f72e950a05eae80ba4c59aeb0

  • SSDEEP

    49152:XAxE7wbPoEROyeHwTXigt8Xhqu24tOsSfxym0jIN3X:XccfyeQTXiCK2gyUm0ju3X

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\baro.exe
    "C:\Users\Admin\AppData\Local\Temp\baro.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads