Overview

overview

10

Static

static

10

1729664946...ed.exe

windows7-x64

3

1729664946...ed.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/10/2024, 06:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    172966494683a361ba19e5107ad739c4261113c8b850c2db5512e1d9850ba41c9e7130006e629.dat-decoded.exe

  • Size

    483KB

  • MD5

    0f045a5802b7c74ab1b5084d8ae195f6

  • SHA1

    acf745a26d0bea81b1d5dc10408210e6ee0db3f5

  • SHA256

    3cc15475a98b22ceb9ea8f042efac4252e5495ff37be67c22de3eceed9d8346b

  • SHA512

    90bab8764926a1acc5a95f970aeaf033aa1d8f3cf2e25dc42d0628ae657135458519a8179e1682afc5a480af199440965be1eaf1d634ab2f9c7a1c3b6fe6cc2c

  • SSDEEP

    6144:ITz+c6KHYBhDc1RGJdv//NkUn+N5Bkf/0TELRvIZPjbsAOZZXAXkcrBT4:ITlrYw1RUh3NFn+N5WfIQIjbs/ZXeT4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\172966494683a361ba19e5107ad739c4261113c8b850c2db5512e1d9850ba41c9e7130006e629.dat-decoded.exe
    "C:\Users\Admin\AppData\Local\Temp\172966494683a361ba19e5107ad739c4261113c8b850c2db5512e1d9850ba41c9e7130006e629.dat-decoded.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:1312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads