ca8e6bcd445b7018fd6543a176b144d7c3a9f3a50116e7930fb590522d98dd2c

Analysis

max time kernel
120s
max time network
120s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
05/10/2024, 11:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ca8e6bcd445b7018fd6543a176b144d7c3a9f3a50116e7930fb590522d98dd2c.exe
Size

1.3MB
MD5

eb6920ba2ac4d07fd6d9eaec66998c2f
SHA1

a331c3e8dbe93a7e124b2f8924348bc7846d9a8c
SHA256

ca8e6bcd445b7018fd6543a176b144d7c3a9f3a50116e7930fb590522d98dd2c
SHA512

ca01d579c18030998c9804edc6e8c6509094b0143172f1897e3f8afa89604f5cc451d8312a617497af15a45e24489a124965d7fd0c573ade21355b7847a96784
SSDEEP

24576:QIXgCWSpRyjdSJVDsVu5unzqWvX1ZSkQ/7Gb8NLEbeZ:DWSjKSJlsQuzqW/18kQ/qoLEw

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	ca8e6bcd445b7018fd6543a176b144d7c3a9f3a50116e7930fb590522d98dd2c.exe

C:\Users\Admin\AppData\Local\Temp\ca8e6bcd445b7018fd6543a176b144d7c3a9f3a50116e7930fb590522d98dd2c.exe
"C:\Users\Admin\AppData\Local\Temp\ca8e6bcd445b7018fd6543a176b144d7c3a9f3a50116e7930fb590522d98dd2c.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:2712

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\jusched.log

Filesize
1KB

MD5
2bb4e7434d0cfc3c7c2e5c73c7660b72

SHA1
52f5462ac8191ef246f2454b1a0b8a2e4eb20fe8

SHA256
27e62613c3a8ffbea617adf5de03f6cef52c3d68ba9e2cd510efce1fd0cf06cb

SHA512
f6ba9f03495ad1c444b48d528eee3d77365bcbaf3b214a1317fc8de453b9b7354904e7b353ea5af921ef1b6a3bb8586952d256436199b240eda86870e1bc3796

Download Submit