Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
09/11/2024, 11:15
Behavioral task
behavioral1
Sample
80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443N.exe
Resource
win7-20240903-en
General
-
Target
80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443N.exe
-
Size
83KB
-
MD5
8fbd49d4bfe35dfc18e8b1c9738a3ef0
-
SHA1
9271959fefbd8d483d6886e4b95ae4c0f80904f7
-
SHA256
80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443
-
SHA512
1b4d4b90d2ff26cc351c666464e93903ec99f2621e0bd72c31c977b99c6235ffb2ee9b925b4b399340f215d02771544a35e612cfdd3a6dd8f6a0d731d0762e2a
-
SSDEEP
1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+xnK:LJ0TAz6Mte4A+aaZx8EnCGVuZ
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/1640-0-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/1640-1-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/1640-7-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/files/0x0005000000004ed7-11.dat upx behavioral1/memory/1640-14-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/1640-20-0x0000000000400000-0x000000000042A000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
83KB
MD587ac8044b05a18fc0645800212fcc9a5
SHA1df504f6bf3f7f088ad01751febf4cbd8aa131469
SHA256260fc7082ed53bf03394eb13c090db25fb50417eed3195e1a32ca59056edcf11
SHA512fd39db44c1eb598bdc324603eaa33429c25e2087d7affec64f6c4f3fe69e30f60e69050dbb99ace1cbd8870af95c6043a6b1135c97eab39d7a3e29d48af3e237