Overview

overview

10

Static

static

3

Identification.exe

windows7-x64

10

Identification.exe

windows10-1703-x64

10

Identification.exe

windows10-2004-x64

10

Identification.exe

windows11-21h2-x64

10

Analysis

  • max time kernel
    15s
  • max time network
    15s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    23-08-2024 09:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Identification.exe

  • Size

    5.6MB

  • MD5

    7916d9dbba2543dfcafd0be76eb3e965

  • SHA1

    64d4efa6e1b124d758285f6d8069ce117a5a45dc

  • SHA256

    ee532f95590e3b36c2678033213eb18bd9e579c27cbc65e6afe5f23aac6f019c

  • SHA512

    d3af74e625fe46df4feace1e47793db53bebbaa0645d34030e98575527df686341e4bda47d660531c33e0ff0dcb1966b0c012c1704da9ed1296d8031cbce7b6c

  • SSDEEP

    49152:qyHmza1sJ+5pTE5k6DBFNHpwEmtiS7Z6G5FwR0Lzhzwvi6fScmW73tOhsd41L3vi:qx2Zzci6Zh3asd4pCPaQ

Score
10/10
stealer

Malware Config

Signatures

  • DeerStealer 11 IoCs

    Detects DeerStealer malware - JaffaCakes118.

    stealer

Processes

  • C:\Users\Admin\AppData\Local\Temp\Identification.exe
    "C:\Users\Admin\AppData\Local\Temp\Identification.exe"
    1⤵
      PID:2584

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2584-0-0x00000000001D0000-0x00000000001D1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2584-1-0x0000000003660000-0x0000000003878000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/2584-13-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-2-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-12-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-14-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-15-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-16-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-18-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-19-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-17-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-20-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-27-0x0000000140000000-0x0000000140284000-memory.dmp

      Filesize

      2.5MB

      Download

    • memory/2584-28-0x00000000001D0000-0x00000000001D1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2584-30-0x0000000003660000-0x0000000003878000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/2584-31-0x0000000000400000-0x00000000009B4000-memory.dmp

      Filesize

      5.7MB

      Download