90c76218336fef336901bf64b764987b4e5f691a15fbe118935350bb21a73752

Analysis

max time kernel
15s
max time network
17s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
21-08-2024 08:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

927f38ad570373ee7e47267a7f1f3720N.exe
Size

734KB
MD5

927f38ad570373ee7e47267a7f1f3720
SHA1

4db3c948aead71b7d77df39369ab7cc54cfba167
SHA256

90c76218336fef336901bf64b764987b4e5f691a15fbe118935350bb21a73752
SHA512

5fc5fac62c5a5c93be57010f00df4da766a04fba14ac799faeaf75f2c4cd1d3579be5bd35e29bb906b79f674c328774a24f14e4658f1eb1f93dd1359aba8c5ff
SSDEEP

3072:6e7WpRaSljcZzxkr9HTNOPAhEZVlqzg2Enn0swfiUqmABzGkpBB:Rq/aGjAqBgYhI4g2EndwFrwz3/

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	927f38ad570373ee7e47267a7f1f3720N.exe

C:\Users\Admin\AppData\Local\Temp\927f38ad570373ee7e47267a7f1f3720N.exe
"C:\Users\Admin\AppData\Local\Temp\927f38ad570373ee7e47267a7f1f3720N.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:1532

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads