Analysis

  • max time kernel
    139s
  • max time network
    164s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29-08-2024 06:34

General

  • Target

    PAIcom/PAIcom/skins.exe

  • Size

    12.2MB

  • MD5

    c518b106d322a31d2f608a9c97f57e67

  • SHA1

    dc10e43d8af64eccf13115e2b5dae25eb3e019a2

  • SHA256

    b79403a0495b916ec3a3153bba1fdbdd49f74c20eabd64adf34480699ce8f8b2

  • SHA512

    2b7e4d5590917ff780c06d306012cd7bf76b116fc0f141a9ac99f8b4d16016d731d0e8c886090225975dbd1d23c66f75a683f55ae9cfb8354156d22f0d000d92

  • SSDEEP

    196608:kMqWkmeGOejqygprDJPAX9a2FIxRnp9MOJsSwYi9uSKNvawcbSZIe:xA79ygprDJPC9FIxhBSRY1Nwbat

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\PAIcom\PAIcom\skins.exe
    "C:\Users\Admin\AppData\Local\Temp\PAIcom\PAIcom\skins.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2236

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2236-0-0x0000000074DFE000-0x0000000074DFF000-memory.dmp

    Filesize

    4KB

  • memory/2236-1-0x0000000000CC0000-0x00000000018F0000-memory.dmp

    Filesize

    12.2MB

  • memory/2236-2-0x0000000006790000-0x0000000006D34000-memory.dmp

    Filesize

    5.6MB

  • memory/2236-3-0x00000000062C0000-0x0000000006352000-memory.dmp

    Filesize

    584KB

  • memory/2236-4-0x0000000006380000-0x000000000638A000-memory.dmp

    Filesize

    40KB

  • memory/2236-5-0x0000000074DF0000-0x00000000755A0000-memory.dmp

    Filesize

    7.7MB

  • memory/2236-6-0x0000000074DFE000-0x0000000074DFF000-memory.dmp

    Filesize

    4KB

  • memory/2236-7-0x0000000074DF0000-0x00000000755A0000-memory.dmp

    Filesize

    7.7MB