Overview

overview

7

Static

static

3

130252a9f1...eN.exe

windows7-x64

7

130252a9f1...eN.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 03:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    130252a9f1df2c0095c529a2ecba24034bc98dc2cf944ed0c46c8bdb83e9c0feN.exe

  • Size

    52KB

  • MD5

    40446a8ab3363b839e9ae5657b291f90

  • SHA1

    0c55a111cad0189fa986b5026921981747c7818f

  • SHA256

    130252a9f1df2c0095c529a2ecba24034bc98dc2cf944ed0c46c8bdb83e9c0fe

  • SHA512

    9784d9c938c510b72f1a247d0963c2009e7910763fe95e60ff0c4d2a3bfd9b4275fcf584606c4b78b9da794d1e7db5350ce5c0316f495c51c0ced031f14e1e6b

  • SSDEEP

    768:NXZmm1UTOEdB7v8W2PSO8u69jytwLJQtOwI7Tc11paHaA/C3:NpjUNkCuaetw6tjUTZ3/C

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\130252a9f1df2c0095c529a2ecba24034bc98dc2cf944ed0c46c8bdb83e9c0feN.exe
    "C:\Users\Admin\AppData\Local\Temp\130252a9f1df2c0095c529a2ecba24034bc98dc2cf944ed0c46c8bdb83e9c0feN.exe"
    1⤵
    • Drops file in System32 directory
    PID:1580
  • C:\Windows\SysWOW64\svrwsc.exe
    C:\Windows\SysWOW64\svrwsc.exe
    1⤵
    • Executes dropped EXE
    • Drops file in System32 directory
    PID:2608

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\svrwsc.exe
    Filesize

    482KB

    MD5

    8a57808f772f75b2c76c1e7f3fe73518

    SHA1

    15f70234407abfdd9605647e77021bac8cc0f68b

    SHA256

    8f200b7742197c3ccabecf575362e82f2e549005e898b20c3777c48f617afa62

    SHA512

    f7c80b82c3f118bfa3b8dee0b698666f2b8e6726f005d0cfac843186d6267127dbe4f106e45a32271946123927db553f7f979a88411d61e0d316164da9f1f191

    Download Submit