Resubmissions

10/04/2025, 20:44

250410-zjhepasjt6 7

22/03/2025, 03:09

250322-dnlr1s1js8 7

02/02/2025, 17:06

250202-vmtvnstjam 8

07/11/2024, 23:57

241107-3zlzla1arf 7

07/11/2024, 23:55

241107-3ytcaa1aqc 8

07/11/2024, 21:36

241107-1f65baykcy 8

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2024, 23:57

General

  • Target

    flood.exe

  • Size

    29.8MB

  • MD5

    7e27015219d8d99c447c31bbd10ba2e4

  • SHA1

    fcd9cae7848d10df5f8912abb75c695aedb79cd3

  • SHA256

    e1e88f51a0464ca8b323cd93d457823039294099c421c9e9459b598235a9dc25

  • SHA512

    49e006a60513cc2376ba360d2ebdbc0fe1e440311c95dd8b5ad154e3988d1e692608f4c1f4ee5a4738872577ec9922507f478cb89dc8067683cf7243c7a41148

  • SSDEEP

    786432:/UQRvdeXxzxBEhka2j6+s7LWB75zuUg2G/A2PtNiLSr4AvKW5SJ:MQF8XpjEb2qHWB75iUHG/wLP

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\flood.exe
    "C:\Users\Admin\AppData\Local\Temp\flood.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Users\Admin\AppData\Local\Temp\flood.exe
      "C:\Users\Admin\AppData\Local\Temp\flood.exe"
      2⤵
      • Loads dropped DLL
      PID:2920

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\_MEI24962\python39.dll

          Filesize

          4.2MB

          MD5

          c4b75218b11808db4a04255574b2eb33

          SHA1

          f4a3497fb6972037fb271cfdc5b404a4b28ccf07

          SHA256

          53f27444e1e18cc39bdb733d19111e392769e428b518c0fc0839965b5a5727a2

          SHA512

          0b7ddbe6476cc230c7bdd96b5756dfb85ab769294461d1132f0411502521a2197c0f27c687df88a2cd1ab53332eaa30f17fa65f93dac3f5e56ed2b537232e69c

        • C:\Users\Admin\AppData\Local\Temp\_MEI24962\wheel-0.43.0.dist-info\INSTALLER

          Filesize

          4B

          MD5

          365c9bfeb7d89244f2ce01c1de44cb85

          SHA1

          d7a03141d5d6b1e88b6b59ef08b6681df212c599

          SHA256

          ceebae7b8927a3227e5303cf5e0f1f7b34bb542ad7250ac03fbcde36ec2f1508

          SHA512

          d220d322a4053d84130567d626a9f7bb2fb8f0b854da1621f001826dc61b0ed6d3f91793627e6f0ac2ac27aea2b986b6a7a63427f05fe004d8a2adfbdadc13c1