Resubmissions
27-10-2024 17:12
241027-vq4t2sxmdn 7Analysis
-
max time kernel
118s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
27-10-2024 17:12
Behavioral task
behavioral1
Sample
DiscordBruteForcer.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
DiscordBruteForcer.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
main.pyc
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
main.pyc
Resource
win10v2004-20241007-en
General
-
Target
DiscordBruteForcer.exe
-
Size
9.7MB
-
MD5
15e764e7b2fc0d0c4eff937cb67938e0
-
SHA1
4a7e4023d463e5d7cc27deddf10f26f95919c647
-
SHA256
7a2ff53d253222d267bd8b42c20443fed034c1d17e246e5fc403c13c5c252b22
-
SHA512
6f97c3a419e5dec958881ebda715edd09cc0f47adc884cb80900a5d901836bfc3f32d12e4f18704d8d22dcd0053ed9201685ef8ea71e28e1af41d7210241371a
-
SSDEEP
196608:eVFe9Yi0xHYKjXMCHGLLc54i1wN+rPIcu9KYK39sn3PP0KPMe+Od1c/ip:kFe9Yi2bXMCHWUjMcuIg/P0KPX6a
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
pid Process 2596 DiscordBruteForcer.exe -
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1960 wrote to memory of 2596 1960 DiscordBruteForcer.exe 31 PID 1960 wrote to memory of 2596 1960 DiscordBruteForcer.exe 31 PID 1960 wrote to memory of 2596 1960 DiscordBruteForcer.exe 31
Processes
-
C:\Users\Admin\AppData\Local\Temp\DiscordBruteForcer.exe"C:\Users\Admin\AppData\Local\Temp\DiscordBruteForcer.exe"1⤵
- Suspicious use of WriteProcessMemory
PID:1960 -
C:\Users\Admin\AppData\Local\Temp\DiscordBruteForcer.exe"C:\Users\Admin\AppData\Local\Temp\DiscordBruteForcer.exe"2⤵
- Loads dropped DLL
PID:2596
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
5.8MB
MD5b9de917b925dd246b709bb4233777efd
SHA1775f258d8b530c6ea9f0dd3d1d0b61c1948c25d2
SHA2560c0a66505093b6a4bb3475f716bd3d9552095776f6a124709c13b3f9552c7d99
SHA512f4bf3398f50fdd3ab7e3f02c1f940b4c8b5650ed7af16c626ccd1b934053ba73a35f96da03b349c1eb614bb23e0bc6b5cc58b07b7553a5c93c6d23124f324a33