Analysis

  • max time kernel
    119s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 07:04

General

  • Target

    6d02979078de910d5166eef480beda80N.exe

  • Size

    49KB

  • MD5

    6d02979078de910d5166eef480beda80

  • SHA1

    18d0ca4432083253e398b732c73c61a0de601468

  • SHA256

    ca1757836eda4a76e821d9872d17daf7b8a0370f984fde881cf2414f9c463591

  • SHA512

    96d350ca6a0124bed11d5431e1ec2ccd1ba6ebf6d768dd014e46e3f6bc1ce2d9905307f283793098fd4b871b754548964990bffd27d7eb25f9f9419477316700

  • SSDEEP

    768:FgJdOsQ/bxbR345fE2p5POvvGY6iEKy1gvopvDYioRowAqlFZ:FgXvEbX3qfZ5Wjqgwpmo1+Z

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\6d02979078de910d5166eef480beda80N.exe
    "C:\Users\Admin\AppData\Local\Temp\6d02979078de910d5166eef480beda80N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2088

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2088-0-0x0000000000400000-0x0000000000411000-memory.dmp

          Filesize

          68KB

        • memory/2088-1-0x0000000000400000-0x0000000000411000-memory.dmp

          Filesize

          68KB