Overview

overview

7

Static

static

7

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

PXEGHOA_x64.exe

windows7-x64

5

PXEGHOA_x64.exe

windows10-2004-x64

5

PXEGHOA_x86.exe

windows7-x64

7

PXEGHOA_x86.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    93s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-09-2024 05:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PXEGHOA_x64.exe

  • Size

    3.2MB

  • MD5

    7aecabcee3b94d09df0d29c8cb677a0c

  • SHA1

    41e84bff56b3057e5ab8c8604eb43f3a57ed2912

  • SHA256

    f640f9045477b6a96f9b28abf4b981e66039713c535b5296d8ce14def0a68375

  • SHA512

    76d5c3b48b6a295d5878a7818b38e34521612756f3a12c6992d27a28367590f8b1cc30592fdf89a0073c0f510ec9050a3238873eb5736d04d3510a9ec1793804

  • SSDEEP

    98304:b0smtzGcaA61E/TVrW8kjFLzd1HrwCxJB9uOPyedn5:b0sYGD1ELVrWj1HjB9uyy85

Score
5/10

Malware Config

Signatures

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

Processes

  • C:\Users\Admin\AppData\Local\Temp\PXEGHOA_x64.exe
    "C:\Users\Admin\AppData\Local\Temp\PXEGHOA_x64.exe"
    1⤵
      PID:2540

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2540-0-0x0000000140000000-0x00000001400DB000-memory.dmp

      Filesize

      876KB

      Download

    • memory/2540-1-0x0000000140000000-0x00000001400DB000-memory.dmp

      Filesize

      876KB

      Download