Overview

overview

10

Static

static

10

virussign....b0.exe

windows7-x64

10

virussign....b0.exe

windows10-2004-x64

10

virussign....60.exe

windows7-x64

7

virussign....60.exe

windows10-2004-x64

7

virussign....40.exe

windows7-x64

7

virussign....40.exe

windows10-2004-x64

7

virussign....e0.exe

windows7-x64

7

virussign....e0.exe

windows10-2004-x64

7

virussign....00.exe

windows7-x64

10

virussign....00.exe

windows10-2004-x64

10

virussign....90.exe

windows7-x64

7

virussign....90.exe

windows10-2004-x64

7

virussign....40.exe

windows7-x64

7

virussign....40.exe

windows10-2004-x64

7

virussign....10.exe

windows7-x64

5

virussign....10.exe

windows10-2004-x64

5

virussign....60.exe

windows7-x64

7

virussign....60.exe

windows10-2004-x64

7

virussign....c0.exe

windows7-x64

10

virussign....c0.exe

windows10-2004-x64

10

virussign....d0.exe

windows7-x64

7

virussign....d0.exe

windows10-2004-x64

7

virussign....b0.exe

windows7-x64

10

virussign....b0.exe

windows10-2004-x64

10

virussign....10.exe

windows7-x64

7

virussign....10.exe

windows10-2004-x64

7

virussign....e0.exe

windows7-x64

7

virussign....e0.exe

windows10-2004-x64

7

virussign....20.exe

windows7-x64

7

virussign....20.exe

windows10-2004-x64

7

virussign....c0.exe

windows7-x64

7

virussign....c0.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-11-2024 17:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    virussign.com_c3fa4d199e50171575cfa553fd205a10.exe

  • Size

    83KB

  • MD5

    c3fa4d199e50171575cfa553fd205a10

  • SHA1

    8bbb0225d1d81fc16ed74ebd010605d61d201e17

  • SHA256

    ae19e02b8b99b3ba9035ff2e990be900768a46c70fa48710a8c61cc878e186ea

  • SHA512

    97f4d61dc3631b68f403dffbf05239d30a7561a8ec322c442e32965dbe77257656b3c51a29a5c9658028070e88f2deb52105c569ae091dabf434e5d459d365e3

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+jK:LJ0TAz6Mte4A+aaZx8EnCGVuj

Score
5/10
discoveryupx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\virussign.com_c3fa4d199e50171575cfa553fd205a10.exe
    "C:\Users\Admin\AppData\Local\Temp\virussign.com_c3fa4d199e50171575cfa553fd205a10.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2176

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\rifaien2-6JnUTuITcoPlBME0.exe
    Filesize

    83KB

    MD5

    fa97364ae86db56495295eb2959699ed

    SHA1

    2107bcdbc246ef1d1b51e3f889cf9660f650b925

    SHA256

    27dfbe3bb80d73724726507c14145f30fbb44b68de607e6461f875eccf403b85

    SHA512

    554b160bbc3bf650f22c41b8e003d5cc9078bcb25c9f9e433cf1ad6f581547c11e07460e806b0a15fa168e0c691d521fdef2baf1611bfb9b46f753313c2f95a6

    Download Submit

  • memory/2176-0-0x0000000000400000-0x000000000042A000-memory.dmp

    Filesize

    168KB

    Download

  • memory/2176-1-0x0000000000400000-0x000000000042A000-memory.dmp

    Filesize

    168KB

    Download

  • memory/2176-8-0x0000000000400000-0x000000000042A000-memory.dmp

    Filesize

    168KB

    Download

  • memory/2176-15-0x0000000000400000-0x000000000042A000-memory.dmp

    Filesize

    168KB

    Download

  • memory/2176-22-0x0000000000400000-0x000000000042A000-memory.dmp

    Filesize

    168KB

    Download

  • memory/2176-29-0x0000000000400000-0x000000000042A000-memory.dmp

    Filesize

    168KB

    Download