Analysis
-
max time kernel
111s -
max time network
96s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
09/11/2024, 11:15
Behavioral task
behavioral1
Sample
80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443N.exe
Resource
win7-20240903-en
General
-
Target
80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443N.exe
-
Size
83KB
-
MD5
8fbd49d4bfe35dfc18e8b1c9738a3ef0
-
SHA1
9271959fefbd8d483d6886e4b95ae4c0f80904f7
-
SHA256
80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443
-
SHA512
1b4d4b90d2ff26cc351c666464e93903ec99f2621e0bd72c31c977b99c6235ffb2ee9b925b4b399340f215d02771544a35e612cfdd3a6dd8f6a0d731d0762e2a
-
SSDEEP
1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+xnK:LJ0TAz6Mte4A+aaZx8EnCGVuZ
Malware Config
Signatures
-
resource yara_rule behavioral2/memory/4360-0-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/4360-1-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/4360-4-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/4360-8-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/files/0x0008000000023c98-11.dat upx behavioral2/memory/4360-12-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral2/memory/4360-22-0x0000000000400000-0x000000000042A000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 80db55aab82a6521a09d36cbe94f97e254594592f388c80d16de917ebb7b3443N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
83KB
MD528303265941ec33e51fa205b28481391
SHA1261f9ee7b3308e8ab9eb64757aa16740e1cc437a
SHA2563d0d078805b9c966cb78fe9ecb18823effd52b2292ef6599876147043246c315
SHA512284c20930a9e31340590d833521b85a4db68f7d48ff518f2aaa8fcb519705008534d9a9b0131bd5f2643cc37f52f28f614716bc999300da6ba13fc592ace4263