Analysis
-
max time kernel
148s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
21/11/2024, 09:31
General
-
Target
cb31763a68f934147a0ff16cb4b0c6bbce28b91b551d665247f91b4e594b068a.exe
-
Size
891KB
-
MD5
0754c6d124f674da8c452851ca0e9848
-
SHA1
e3d98f71a1ba50395ef5ef63ad001a13cdbd991c
-
SHA256
cb31763a68f934147a0ff16cb4b0c6bbce28b91b551d665247f91b4e594b068a
-
SHA512
18e9b207cf6fcd860d618922837237ed66d55652564a16d51e73359eef9eccc5459ad4cc4abc0906d72c54edb16aa99fdb6d54d3d324ffaf192f1f07e49aa606
-
SSDEEP
24576:ybjxvySM4844QiQrODblw7AHGNVfM5wNE2+M2j:ybjxNMf44PQrOD5eIGN5WsE2+L
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\cb31763a68f934147a0ff16cb4b0c6bbce28b91b551d665247f91b4e594b068a.exe"C:\Users\Admin\AppData\Local\Temp\cb31763a68f934147a0ff16cb4b0c6bbce28b91b551d665247f91b4e594b068a.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses