Analysis
-
max time kernel
111s -
max time network
98s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system -
submitted
07/11/2024, 10:56
Behavioral task
behavioral1
Sample
d8023c4a3cc62e7afa6a08f24cd1c6d37e2248b0445ffa0903dda3152449baf2N.exe
Resource
win7-20241010-en
General
-
Target
d8023c4a3cc62e7afa6a08f24cd1c6d37e2248b0445ffa0903dda3152449baf2N.exe
-
Size
83KB
-
MD5
0a71b4a8a878dd3b234fcda7fa906020
-
SHA1
73118a59882d15383f21bdf62e307836ea0468c5
-
SHA256
d8023c4a3cc62e7afa6a08f24cd1c6d37e2248b0445ffa0903dda3152449baf2
-
SHA512
566b9a210f97b37c1c8c5303fa07fdb290f83280a3eb5b204b3a3f2458d9829e6c7234f7db02c370e201951a870066819dfcc869672a04f2477c66a07eea2a64
-
SSDEEP
1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+pK:LJ0TAz6Mte4A+aaZx8EnCGVup
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/564-0-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/564-2-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/564-5-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/564-9-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/files/0x000e000000012263-13.dat upx behavioral1/memory/564-16-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/564-23-0x0000000000400000-0x000000000042A000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language d8023c4a3cc62e7afa6a08f24cd1c6d37e2248b0445ffa0903dda3152449baf2N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
83KB
MD5d12b7077a7c2b501610ebdca068d1cd2
SHA130e0ba48fb1d6cdaea90d8fee9b9446c5b36cfc4
SHA2563ddc0735267238648fd8a009610c673d37ca926aa521d1fe1e58c8ea1f91a401
SHA51225329589591fea2cdc5addf95f84ea440a482d8b74996221c7ef0173a583e93de379c39770da44e9a2ca1168bb3fcc085e37c8acf6c50b434f8432ed1416242f