Analysis
-
max time kernel
110s -
max time network
92s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
07/11/2024, 10:47
Behavioral task
behavioral1
Sample
cdfc4e554ca1ae0cd8a68b6b4589bec3fafd1718dc49464a21ef0471b72afdc1N.exe
Resource
win7-20240903-en
General
-
Target
cdfc4e554ca1ae0cd8a68b6b4589bec3fafd1718dc49464a21ef0471b72afdc1N.exe
-
Size
83KB
-
MD5
d99be55235e0fe6cde1e921a47dd3de0
-
SHA1
6507d429f093ba152a916cfc0eb985e7924d1679
-
SHA256
cdfc4e554ca1ae0cd8a68b6b4589bec3fafd1718dc49464a21ef0471b72afdc1
-
SHA512
645bb56a9fcb44cdbd0c5aa8ba97ce90c7f1e497f01d9c9f3fdfc15f5bd4bee7d663e15c3d3e2f57139edafdf8c0d89381f35ba7cf36bb6901a9b568580b226b
-
SSDEEP
1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+2K:LJ0TAz6Mte4A+aaZx8EnCGVu2
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/2280-0-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/2280-1-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/2280-5-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/files/0x0005000000004ed7-11.dat upx behavioral1/memory/2280-12-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/2280-22-0x0000000000400000-0x000000000042A000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language cdfc4e554ca1ae0cd8a68b6b4589bec3fafd1718dc49464a21ef0471b72afdc1N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
83KB
MD5d318124c85f2d370678a4e598914d679
SHA1f4b62fd4ce203161c6aa366c44ba7d3eacf81f60
SHA256c33480bedb74761f578928146a5dfabe7d94928dac415c35b866b47fca499852
SHA5122998f7542246874483593b996f6aafd9e626c38037d4e94ac47ccc750921a19eb38a03a51c4caeca310f2b34df56c9df2d84963d3f3d0c48789567cc72ac3313