Overview

overview

6

Static

static

1

Wise Regis...19.exe

windows7-x64

3

Wise Regis...19.exe

windows10-2004-x64

3

qiuquan.cc.url

windows7-x64

6

qiuquan.cc.url

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    20/11/2024, 03:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Wise Registry Cleaner 11.1.8.723 专业版(单文件) - 20241119.exe

  • Size

    3.9MB

  • MD5

    019025a860dec4675a481b4a388c3288

  • SHA1

    718c752fb4e771dbe9d2cebde7b7a48d743031df

  • SHA256

    cc288c7883d357d45b92b823eda720b62d3c30a8cd26fec639cdabae82eb09fb

  • SHA512

    665bd727dfdec1b7147a51c43c5b72c6110fff5b4cc5f1e73686a72954777eea36c191f2e1c22d5bad898553b5abd64548c6e4792bcc7d05fb082e647bc22093

  • SSDEEP

    98304:StPCIdUInaFOat7ZYyiKFFBZTcmBhAu6ssHGu4:OndUZHZY/hm8FssHGu4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\Wise Registry Cleaner 11.1.8.723 专业版(单文件) - 20241119.exe
    "C:\Users\Admin\AppData\Local\Temp\Wise Registry Cleaner 11.1.8.723 专业版(单文件) - 20241119.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2052-0-0x0000000000400000-0x000000000044F000-memory.dmp

    Filesize

    316KB

    Download

  • memory/2052-2-0x0000000000401000-0x000000000040B000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2052-3-0x0000000000400000-0x000000000044F000-memory.dmp

    Filesize

    316KB

    Download