Analysis
-
max time kernel
111s -
max time network
96s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
09/11/2024, 11:06
Behavioral task
behavioral1
Sample
31d4e850366a415c394f28c11863a641d8e435b5f322a731bd30fb951d10dd73N.exe
Resource
win7-20240903-en
General
-
Target
31d4e850366a415c394f28c11863a641d8e435b5f322a731bd30fb951d10dd73N.exe
-
Size
83KB
-
MD5
8a2f27ac6f14a9373c34001569bcac80
-
SHA1
c94a8edb099f63bd53ac0934201f6e3aba6564e4
-
SHA256
31d4e850366a415c394f28c11863a641d8e435b5f322a731bd30fb951d10dd73
-
SHA512
57b926e8747d54568ed030336f89239f9eafbdc3f1e9d75a8939a635e4e75c12536da204b5de65024c4d104c235a5054d89c9d0f1fbf3e94a805c68178791abb
-
SSDEEP
1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+JK:LJ0TAz6Mte4A+aaZx8EnCGVuJ
Malware Config
Signatures
-
resource yara_rule behavioral2/memory/1312-0-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/1312-1-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/1312-8-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/files/0x0008000000023cd2-12.dat upx behavioral2/memory/1312-15-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/1312-19-0x0000000000400000-0x000000000042A000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 31d4e850366a415c394f28c11863a641d8e435b5f322a731bd30fb951d10dd73N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
83KB
MD5436a29e12db9117f66e6f221ce74d17b
SHA1e7b236c40c50a4058604293935cd089d2814379d
SHA256e29478f2c5383c5cdf6fa3dc25cf3d5e289170b82204c78a7dbb9971828ea039
SHA512cf878fc202c84cd91d80ebd2ab9df014f06009f1104307da4fa28a20028f102bf59e0edd3285dc328d90bbc60c3bcb811640376cf78920ecc8cdd05208d518f7