Overview

overview

10

Static

static

3

a374dd33cc...e9.exe

windows7-x64

5

a374dd33cc...e9.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    15s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2024 08:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a374dd33cc25addf3fe6c7b087c008e6654af2d3443ed3e429079fb949dfb8e9.exe

  • Size

    10.0MB

  • MD5

    8ab764535973924439bb15e368ee6c0e

  • SHA1

    4849a45be27b9b8bc725522a3ae9cddd6ee705b8

  • SHA256

    a374dd33cc25addf3fe6c7b087c008e6654af2d3443ed3e429079fb949dfb8e9

  • SHA512

    b0a227370851e7fc8f06e6eb16d05ee7d754b864f739aaba9f4f63970f99a0f9657a9b65429a64f903b2ee69849871a0c88c77e05ad29ae78e018db47facd5c3

  • SSDEEP

    49152:dcv8vvuwroS/mx7EtiK6oWYSYNgYTSSGT70cmTNvSWy2XtCnTycFDySVuHjHnMF:H2hUm7EtiaSGgD7aBvfyqCOY/+jH8

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a374dd33cc25addf3fe6c7b087c008e6654af2d3443ed3e429079fb949dfb8e9.exe
    "C:\Users\Admin\AppData\Local\Temp\a374dd33cc25addf3fe6c7b087c008e6654af2d3443ed3e429079fb949dfb8e9.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious behavior: EnumeratesProcesses
    PID:2476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2476-0-0x000000013F1A0000-0x000000013F6E5000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2476-3-0x000000013F1A0000-0x000000013F6E5000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2476-6-0x0000000001CC0000-0x0000000001D1F000-memory.dmp

    Filesize

    380KB

    Download

  • memory/2476-2-0x000000013F431000-0x000000013F6E5000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2476-5-0x000000013F1A0000-0x000000013F6E5000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2476-7-0x000000013F1A0000-0x000000013F6E5000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2476-1-0x000000013F1A0000-0x000000013F6E5000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2476-11-0x000007FEFD0E0000-0x000007FEFD14C000-memory.dmp

    Filesize

    432KB

    Download

  • memory/2476-15-0x000007FEFEF20000-0x000007FEFEFBF000-memory.dmp

    Filesize

    636KB

    Download

  • memory/2476-16-0x000000013F1A0000-0x000000013F6E5000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/2476-13-0x0000000077280000-0x0000000077429000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/2476-17-0x000000013F431000-0x000000013F6E5000-memory.dmp

    Filesize

    2.7MB

    Download