Overview

overview

10

Static

static

7

066d06ca00...81.exe

windows7-x64

10

06d6f22d02...bc.exe

windows7-x64

8

09f1d49065...d1.exe

windows7-x64

10

208cca124d...45.exe

windows7-x64

10

241f67ece2...79.exe

windows7-x64

1

30616f6c48...60.exe

windows7-x64

10

44f28cd6ea...7e.exe

windows7-x64

3

4b190a407b...5f.exe

windows7-x64

10

72ddceebe7...6b.exe

windows7-x64

9

7b53a00b3a...b2.exe

windows7-x64

7

7cf39ebb44...57.exe

windows7-x64

10

8c42a08427...51.exe

windows7-x64

7

9d081b734c...91.exe

windows7-x64

4

b25cc31472...15.exe

windows7-x64

10

b2ec72de35...8f.exe

windows7-x64

6

b4c2ffccfe...dd.exe

windows7-x64

5

bab7af3306...be.exe

windows7-x64

9

c531015ec0...86.exe

windows7-x64

8

dc7ab2e7ed...60.exe

windows7-x64

8

debfd1fb34...d8.exe

windows7-x64

8

df36e2aaae...37.exe

windows7-x64

9

df99316e57...27.exe

windows7-x64

4

e60fc4473a...60.exe

windows7-x64

10

Analysis

  • max time kernel
    839s
  • max time network
    845s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12-11-2024 19:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9d081b734c595a1ae38e254369c0060c5870ee119c9f7853989c23ebc204a291.exe

  • Size

    24KB

  • MD5

    8a1225f47aa9f0673c32983f1b2b2c5b

  • SHA1

    742f2364f2d5f10385b56c22ecf17a3cdcc53346

  • SHA256

    9d081b734c595a1ae38e254369c0060c5870ee119c9f7853989c23ebc204a291

  • SHA512

    d633dc2caa28a0a782108b9d47d43322c6f1d95c82903219b4b83eb491691217916e7eee35a0eb206aae2937523896e538141e524b396c2ae7210ec8f8238827

  • SSDEEP

    96:/lx5KHYFNV+Vvl/iABo1FYXGgn2PUkWf2BtvXrs2aoE8y79h9jSUyrW9EhN:/TzmVvl/vaKdnvJeBtvXrsr352UyCEh

Score
4/10
discovery

Malware Config

Signatures

  • Drops file in Program Files directory 24 IoCs
  • Drops file in Windows directory 29 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9d081b734c595a1ae38e254369c0060c5870ee119c9f7853989c23ebc204a291.exe
    "C:\Users\Admin\AppData\Local\Temp\9d081b734c595a1ae38e254369c0060c5870ee119c9f7853989c23ebc204a291.exe"
    1⤵
    • Drops file in Program Files directory
    • Drops file in Windows directory
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:2248

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Program Files\RepairImport.docx.sb
    Filesize

    5KB

    MD5

    e233540c0dd93f4cf95aac371764a63a

    SHA1

    4fb7bd38b8a157e90d449eebedb7d448a2f0e58a

    SHA256

    62f90dbdf4c3a0e4d066acd630cc8445132280f474241e649ec6a83dba3e3db0

    SHA512

    ba5dc197cab256975b2c133da3cc40d614dc2501fba7ad8ab2229ce134ea878b031dfebac19d3f7cc7d4df4a775a47a3079ee0c898e58ba8ac2757e4def6dcaa

    Download Submit