Overview

overview

7

Static

static

7

e6ff8a169f...0N.exe

windows7-x64

7

e6ff8a169f...0N.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    18s
  • max time network
    22s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    02/09/2024, 21:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e6ff8a169f8a5a78580607141ffbd760N.exe

  • Size

    146KB

  • MD5

    e6ff8a169f8a5a78580607141ffbd760

  • SHA1

    8f2ac9e3a48c448f98f0861c6ca23cf3e5d501c2

  • SHA256

    a32f833d0ab72963f5a35a6d34a3380af138762c24b0c4801af80a32026fabcb

  • SHA512

    3061b0acc8797c38d974807a926684d8b512509ad709c56e270079e2ad6e4bc53c6fce2ad1907631550e256a718b9afd70022e79d3455af03ef1a13021d2be53

  • SSDEEP

    1536:V7Zf/FAxTWoJJ7TT4pWHlPEXZzjUq3th5f6utM5vLNinVmWvMu0b2UdpXk+p0Rpx:fny1mWHIjN3tj6qnv0b2UrXkbvLt

Score
7/10
discoveryupx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\e6ff8a169f8a5a78580607141ffbd760N.exe
    "C:\Users\Admin\AppData\Local\Temp\e6ff8a169f8a5a78580607141ffbd760N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2504

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2504-0-0x0000000000400000-0x000000000040B000-memory.dmp

    Filesize

    44KB

    Download

  • memory/2504-1-0x0000000000400000-0x000000000040B000-memory.dmp

    Filesize

    44KB

    Download