862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447

Analysis

max time kernel
121s
max time network
123s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
19/11/2024, 16:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447.exe
Size

510KB
MD5

c7d303a52672e53478708485e4e5a75b
SHA1

6f7a15a32a10308fdbc87a66c40baf978f31e3c1
SHA256

862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447
SHA512

4960bb0d741114019f5097bd36a9cf2ebfc531545bb9294699a10968b40a39ae8c097d18bdd681118bbd7db3ba4aba1c71a51d9b87bf22e65955b21cfdf85dec
SSDEEP

6144:zqLhcCPxUAdl8tYooJ4Ce33NJ1zJu2epjPyTxJY+WJeFv3GbUQp5P140b/q:zShcCPxUAdl8mooJ03Bzs2ep2g3FFq

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447.exe

C:\Users\Admin\AppData\Local\Temp\862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447.exe
"C:\Users\Admin\AppData\Local\Temp\862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:628

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\CyberLink\PowerDVDLogs\23.0\PowerDVDShell\cpp_862598ec76ac19c8c600aeec43ebc609645c956a395e12bcf8421fba8f7d9447_628.log

Filesize
530B

MD5
9d097e5065107774bf82bd7063682ff8

SHA1
e30a9f9051ab4f3c00efae7222782382fc90e1eb

SHA256
d91b7d880ae8e15c6e2e7d842f19c6f9a8b5cefef02dcac340262d17dcfb0d2c

SHA512
fcd0497228743edeae02f3d5080a97a8f14d83fb8ce4c9c623b2fc62507d5ea0a60bb9f5cb0459305054eab4acfa753947d13e0ef2d8cc4150ac33a7f5061070

Download Submit