Overview

overview

3

Static

static

3

dbca73f7fc...fN.exe

windows7-x64

3

dbca73f7fc...fN.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    15s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30-09-2024 15:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN.exe

  • Size

    348KB

  • MD5

    bc739d4540c02ded8a0038f91e5f1130

  • SHA1

    ab5b01e1eedc3cda7bd61ea9c8a9b7a20b91fb2a

  • SHA256

    dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250f

  • SHA512

    74a5099fd7d4c38852b48ebf7a519e71b005874ff9e63643fa4b9b3e20962d72c1ea8eba86116a5df4a100a92f39016fa0e11641c0a747bc3fce09f3c68aaa82

  • SSDEEP

    6144:UmKm5IXPwlq6zayk5rmn8NC2UPFdZay/RSt/:0wlq6zayk5UrPDzRS

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN.exe
    "C:\Users\Admin\AppData\Local\Temp\dbca73f7fc02e8ee373cd9247a2f5dd5a78e28809b56dd0dce6ec2792b17250fN.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1644

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads