Overview

overview

3

Static

static

3

翰文横�...11.exe

windows7-x64

3

翰文横�...11.exe

windows10-2004-x64

Analysis

  • max time kernel
    31s
  • max time network
    38s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-09-2024 16:32

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Machine shutdown
Report Analysis Logs

General

  • Target

    翰文横道图编制安装程序 12.11.exe

  • Size

    4.5MB

  • MD5

    1775af01455e0ff183a92b5c5915d47a

  • SHA1

    de758c30b75241e104a157a5172765a70e718501

  • SHA256

    bf9170d7ab994a99e85953dbb04d6e4fbef4a42b030b6023818cd1d0a9487328

  • SHA512

    66c23df48104fe914385a66357a09d664509e765bc9007500f4b75b6e483bd05c2ff3834c5ea02e4708f32ac2907eac9db6026354d0d046b689ddc2f92c7ed2a

  • SSDEEP

    98304:0OV7IiHyNAQkv3ifEygF6CugTXtXi+s4yz+Rts9hXMf:0OC/NA17LF6IXtXP7yz+rs9hW

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\翰文横道图编制安装程序 12.11.exe
    "C:\Users\Admin\AppData\Local\Temp\翰文横道图编制安装程序 12.11.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2768-2-0x0000000000401000-0x000000000040B000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2768-0-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/2768-3-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download