Analysis
-
max time kernel
120s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
21/08/2024, 19:52
General
-
Target
蓝屏修复(先运行我,在运行软件).exe
-
Size
7KB
-
MD5
bf8d9a251b57a55344d3c3946b0aba68
-
SHA1
b98af487c32069d7a2da9a6c21360fa8085aec0c
-
SHA256
ad9b8cfdf798d412f4ef8eb15767a00cad918244e483b2cc1b45e6391711a116
-
SHA512
cafff203091e615b500b776039d4141f2feb989c50ac32a734a9c54031579c5c07fec87cef160fa951c4ffc147baafb75d07ef88e4b94173e1c45d51223b3e40
-
SSDEEP
96:t2irou1bK1XMQwN5NRT+BA00Tk7i1uZ1hQtSRbgbJzEXAffzYfjXjpf/7fhnijzJ:txrouI1U5T+Bb0UVfhQtSdk3EJ7m3W1
Score
7/10
Malware Config
Signatures
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\蓝屏修复(先运行我,在运行软件).exe"C:\Users\Admin\AppData\Local\Temp\蓝屏修复(先运行我,在运行软件).exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of AdjustPrivilegeToken
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
32KB
-
Filesize
32KB