Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
10/11/2024, 08:50
Behavioral task
behavioral1
Sample
958b3622f7e5df668d5ff4ac393d6adbf666cf637d8014f8485f0508575e6d47N.exe
Resource
win7-20240903-en
General
-
Target
958b3622f7e5df668d5ff4ac393d6adbf666cf637d8014f8485f0508575e6d47N.exe
-
Size
83KB
-
MD5
278503bba72688843bcba2898b24d080
-
SHA1
9414396d5a65fc291027da04af3477eac4a78c12
-
SHA256
958b3622f7e5df668d5ff4ac393d6adbf666cf637d8014f8485f0508575e6d47
-
SHA512
03ce8e2222b684f2b957f45a5222de185dea1a0becb53550fc145ec21cb8e86eaea177473e289a2d02563bd5d424f48509b74ef2f4ba603c8e156ec713d548ca
-
SSDEEP
1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+sK:LJ0TAz6Mte4A+aaZx8EnCGVus
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/2104-0-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/2104-1-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/2104-5-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/files/0x0005000000004ed7-11.dat upx behavioral1/memory/2104-12-0x0000000000400000-0x000000000042A000-memory.dmp upx behavioral1/memory/2104-22-0x0000000000400000-0x000000000042A000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 958b3622f7e5df668d5ff4ac393d6adbf666cf637d8014f8485f0508575e6d47N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
83KB
MD59f0eeb3fc6d5558435777044bd7f8449
SHA1fc17f20e9facba0266112cf198cb7fbfa63c1d1f
SHA25681ef3ad195438e12d42d0531824c2a181071699b48af9795765ca86db749d785
SHA5129f6f0ee10a41cc7bd2b736b5cf8d4b68cfdda35b1c82bc58c554a9b822e9cbfc8d774100cbb220b23c591d3aef93f4432a9aca5488bb95820085ac628086c74c