Analysis

  • max time kernel
    93s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    17-10-2024 08:11

General

  • Target

    Win32/mimikatz.exe

  • Size

    399KB

  • MD5

    1515f376964ae2289491ec21a1934f8b

  • SHA1

    54b5b8d9eb53bb6146d9fc891225bdd8392d6ca3

  • SHA256

    bd5665b76a6b6d12a6017fc14f2b35cbf68b3bd4208ed75fd4a10c8305adbe1a

  • SHA512

    9e25a7f48d9d0d6e70ecc4682cb743e3887fc6cf8a65fc0ea51b86ff45e948c8f89179875c9f56088570493fba73cad5c00f3e53715f58df90c7927b6153cb29

  • SSDEEP

    6144:g5CnATf5TLg7qal6kiOA9NNj11BVoBHilBbQx5/X/Kd7:yTxTU7N0OA9T1HVoBHilBbyXCV

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\Win32\mimikatz.exe
    "C:\Users\Admin\AppData\Local\Temp\Win32\mimikatz.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:376

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads