Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    09/11/2024, 20:17

General

  • Target

    1d8b54dd610b45c78c1bb22c02a4fac30cc856ffdec30a8ee175e6541bd5f932.exe

  • Size

    1.1MB

  • MD5

    d731ade7ad5896e85b8693c88b2bf87c

  • SHA1

    3d4579ddc4eb1ff6b69a486130e9aed84e17ec79

  • SHA256

    1d8b54dd610b45c78c1bb22c02a4fac30cc856ffdec30a8ee175e6541bd5f932

  • SHA512

    8f206f09ca24e0c4ff12149821d1aa191900b7ac084fa857a2e2b9f9e2c96ee1c066ca0c0b946847226e06efcf177d9f262e00c3f6ae061dd070322c22899001

  • SSDEEP

    12288:rl4Xc3ajG+hjQKymY8efKCpD7Gj9G6G1qT8nQkCu83L3Wl/np9DBDt3kbE:rl4sqjnhMgeiCl7G0nehbGZpbD

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\1d8b54dd610b45c78c1bb22c02a4fac30cc856ffdec30a8ee175e6541bd5f932.exe
    "C:\Users\Admin\AppData\Local\Temp\1d8b54dd610b45c78c1bb22c02a4fac30cc856ffdec30a8ee175e6541bd5f932.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2340

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2340-0-0x0000000000400000-0x000000000051D000-memory.dmp

          Filesize

          1.1MB

        • memory/2340-1-0x0000000000520000-0x0000000000587000-memory.dmp

          Filesize

          412KB

        • memory/2340-8-0x0000000000520000-0x0000000000587000-memory.dmp

          Filesize

          412KB

        • memory/2340-11-0x0000000000400000-0x000000000051D000-memory.dmp

          Filesize

          1.1MB