Overview

overview

7

Static

static

7

e24b37be5e...0N.exe

windows7-x64

7

e24b37be5e...0N.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    16s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    23-08-2024 03:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e24b37be5e09fd76dcf9fe2fa81f71f0N.exe

  • Size

    9.7MB

  • MD5

    e24b37be5e09fd76dcf9fe2fa81f71f0

  • SHA1

    6cccd35ed3746f4aa0325a05a7edfbccc9f44ed1

  • SHA256

    e089897b04d5f0bf260f905eaefe54b9170d6bc6029cd33602193a53d13318f8

  • SHA512

    93f2c644a016416ae986c4f8ceb5ef4bda46ba687a0b5aff5b7d4b144625db9bc5021bfb9ea17a8c5df474aec77f26b1f040b5e3e1e0f9f46355509c6d9243c0

  • SSDEEP

    196608:RIIIIIIIIIIIIIIIIIIIIIIIIIIIIIIII8LLLLLLLLLLLLLLLLLLLLLL9:eLLLLLLLLLLLLLLLLLLLLLL9

Score
7/10
upx

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e24b37be5e09fd76dcf9fe2fa81f71f0N.exe
    "C:\Users\Admin\AppData\Local\Temp\e24b37be5e09fd76dcf9fe2fa81f71f0N.exe"
    1⤵
    • Drops file in System32 directory
    PID:2504
  • C:\Windows\SysWOW64\svrwsc.exe
    C:\Windows\SysWOW64\svrwsc.exe
    1⤵
    • Executes dropped EXE
    • Drops file in System32 directory
    PID:3036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\svrwsc.exe
    Filesize

    10.1MB

    MD5

    a9b0ef854dbe373da7371c8316a53b1a

    SHA1

    4e9891cb0f5470412393afea66f745e614658318

    SHA256

    3377f83451ca990a8bcb20ddd181d887842b00cb42c484615553a953a7315ef8

    SHA512

    9e519d6d90726946df4bc3e0cd69a2cbbd55531b4d7c28722e37769af8ecec3e1dac342839057ba9a268e7079d00058db1016d24dfe1eb2bdbc3e42117469199

    Download Submit

  • memory/2504-0-0x0000000000400000-0x000000000042B000-memory.dmp

    Filesize

    172KB

    Download

  • memory/2504-1-0x00000000003B0000-0x00000000003B5000-memory.dmp

    Filesize

    20KB

    Download

  • memory/2504-2-0x0000000000400000-0x000000000042B000-memory.dmp

    Filesize

    172KB

    Download

  • memory/2504-9-0x00000000003B0000-0x00000000003B5000-memory.dmp

    Filesize

    20KB

    Download

  • memory/2504-8-0x0000000000400000-0x000000000042B000-memory.dmp

    Filesize

    172KB

    Download

  • memory/3036-6-0x0000000000400000-0x000000000042B000-memory.dmp

    Filesize

    172KB

    Download