Overview

overview

7

Static

static

7

2fb1f5b200...18.exe

windows7-x64

7

2fb1f5b200...18.exe

windows10-2004-x64

7

$APPDATA/$...4_.exe

windows7-x64

1

$APPDATA/$...4_.exe

windows10-2004-x64

3

$APPDATA/$...st.exe

windows7-x64

7

$APPDATA/$...st.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

newtab.html

windows7-x64

3

newtab.html

windows10-2004-x64

3

newtab.js

windows7-x64

3

newtab.js

windows10-2004-x64

3

options.html

windows7-x64

3

options.html

windows10-2004-x64

3

options.js

windows7-x64

3

options.js

windows10-2004-x64

3

$PLUGINSDI...ON.dll

windows7-x64

5

$PLUGINSDI...ON.dll

windows10-2004-x64

5

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PLUGINSDI...bf.dll

windows7-x64

3

$PLUGINSDI...bf.dll

windows10-2004-x64

3

$APPDATA/$...0_.exe

windows7-x64

1

$APPDATA/$...0_.exe

windows10-2004-x64

3

$APPDATA/$...id.dll

windows7-x64

3

$APPDATA/$...id.dll

windows10-2004-x64

3

chrome/con...ies.js

windows7-x64

3

chrome/con...ies.js

windows10-2004-x64

3

chrome/con...ito.js

windows7-x64

3

chrome/con...ito.js

windows10-2004-x64

3

$APPDATA/$...er.dll

windows7-x64

6

$APPDATA/$...er.dll

windows10-2004-x64

6

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 10:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $APPDATA/$_33_/$_34_.exe

  • Size

    36KB

  • MD5

    68af6c708a8c79898c32c4acfabe493d

  • SHA1

    7bb53769d7b2236fd7ac371ca33dd7765f7cd1c0

  • SHA256

    0e3d5e3017faa30b819acd5f084b1cea8a9c9f6f5ed2b388a0ec83533b88d981

  • SHA512

    ad562bd2bfb7edde108bfbe960a878d2204128c2f337308545d39b60b5be2090a6aec65548b9d7cb4b139a90f20bdddd79874dfb4b7fba07668ab2b5c99c98a5

  • SSDEEP

    384:LsMHpwDXiT9m06NLNsDvGl572kMRrL1Wvhe:fepxNZfckmrLyh

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\$APPDATA\$_33_\$_34_.exe
    "C:\Users\Admin\AppData\Local\Temp\$APPDATA\$_33_\$_34_.exe"
    1⤵
      PID:816

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/816-0-0x0000000000400000-0x0000000000415000-memory.dmp

      Filesize

      84KB

      Download