Analysis

  • max time kernel
    15s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 03:57

General

  • Target

    24f465acde646858f2bceb87774281ef91c87445ded760b0cd3b8d2a151e10b1N.exe

  • Size

    211KB

  • MD5

    e416582bc9046866b14109b05b655690

  • SHA1

    3d749d3f33be4b0bf8b91a493189e487fa0d0e74

  • SHA256

    24f465acde646858f2bceb87774281ef91c87445ded760b0cd3b8d2a151e10b1

  • SHA512

    a37784ed5eb8b18df85f0a4d9cfa2c3f154e1f26c7a15df955e461a2969d572f2e8527c4f1faa472637b3fa823e9d9edb5132ad423f75141571a0b3b2059725a

  • SSDEEP

    3072:KS571Zt3Z0XZdDwTAUofMXRR8L/9DridQ2vCvv1Y1+:t5/Z0JN9Ma9Dr/F++

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\24f465acde646858f2bceb87774281ef91c87445ded760b0cd3b8d2a151e10b1N.exe
    "C:\Users\Admin\AppData\Local\Temp\24f465acde646858f2bceb87774281ef91c87445ded760b0cd3b8d2a151e10b1N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1480

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1480-0-0x00000000741F1000-0x00000000741F2000-memory.dmp

    Filesize

    4KB

  • memory/1480-1-0x00000000741F0000-0x000000007479B000-memory.dmp

    Filesize

    5.7MB

  • memory/1480-2-0x00000000741F0000-0x000000007479B000-memory.dmp

    Filesize

    5.7MB

  • memory/1480-3-0x00000000741F0000-0x000000007479B000-memory.dmp

    Filesize

    5.7MB

  • memory/1480-4-0x00000000741F0000-0x000000007479B000-memory.dmp

    Filesize

    5.7MB

  • memory/1480-5-0x00000000741F0000-0x000000007479B000-memory.dmp

    Filesize

    5.7MB