Overview

overview

3

Static

static

3

.svn/prist...fe.vbs

windows7-x64

1

.svn/prist...fe.vbs

windows10-2004-x64

1

.svn/prist...92b.js

windows7-x64

3

.svn/prist...92b.js

windows10-2004-x64

3

.svn/prist...87.vbs

windows7-x64

1

.svn/prist...87.vbs

windows10-2004-x64

1

.svn/prist...4bf.js

windows7-x64

3

.svn/prist...4bf.js

windows10-2004-x64

3

.svn/prist...05.exe

windows7-x64

1

.svn/prist...05.exe

windows10-2004-x64

3

.svn/prist...n-base

windows7-x64

3

.svn/prist...n-base

windows10-2004-x64

3

.svn/prist...4e3.js

windows7-x64

3

.svn/prist...4e3.js

windows10-2004-x64

3

.svn/prist...e5.jar

windows7-x64

1

.svn/prist...e5.jar

windows10-2004-x64

1

.svn/prist...a8d.js

windows7-x64

3

.svn/prist...a8d.js

windows10-2004-x64

3

.svn/prist...7b.dll

windows7-x64

1

.svn/prist...7b.dll

windows10-2004-x64

1

.svn/prist...b3.dll

windows7-x64

1

.svn/prist...b3.dll

windows10-2004-x64

1

.svn/prist...61.dll

windows7-x64

1

.svn/prist...61.dll

windows10-2004-x64

1

.svn/prist...35a.js

windows7-x64

3

.svn/prist...35a.js

windows10-2004-x64

3

.svn/prist...6b.dll

windows7-x64

1

.svn/prist...6b.dll

windows10-2004-x64

1

.svn/prist...439.js

windows7-x64

3

.svn/prist...439.js

windows10-2004-x64

3

BS柜台/w...OT.jar

windows7-x64

1

BS柜台/w...OT.jar

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/08/2024, 04:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    .svn/pristine/43/4342c65488d30cc4bc0cb8334a4c8392ea25be05.exe

  • Size

    432KB

  • MD5

    58d921f945d793ed846b4631d7d5e9b8

  • SHA1

    4342c65488d30cc4bc0cb8334a4c8392ea25be05

  • SHA256

    4e00ad832b83d9975526f906f0aed1814c4081511695e29337a2ee14a3c67f06

  • SHA512

    9307478c41c7874352b192e130d005954026e55af7d149c51d6bdd11349d9f72c60f0a4ff6a227eac0ae5c3fb15453676ab9c2325fe9e809e9769a5b6e0a03f9

  • SSDEEP

    12288:Kfr0Gf9PJOu60dUvrNxRbkiMY1uMS1mW4LlrtF5Tsfem:EZMScW4Llr+f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\.svn\pristine\43\4342c65488d30cc4bc0cb8334a4c8392ea25be05.exe
    "C:\Users\Admin\AppData\Local\Temp\.svn\pristine\43\4342c65488d30cc4bc0cb8334a4c8392ea25be05.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:896

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads