ac454f16640efaa4ff900a89091006d711730e8f58cbb3d3d04af84df9f477ec

Analysis

max time kernel
95s
max time network
143s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
26-12-2024 23:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

wdxsx.exe
Size

4KB
MD5

c23f252a4352c30c3473e3fbbdff84f0
SHA1

d7240c2f65d1509e51c8461d835a1b14e167ad4f
SHA256

6bc4f989450cc6a3d1e220371fc64029bfac461429b035b8db90ae56af7dae8f
SHA512

87ef7be0450bd6b40d1d63fdcb66448b8aee04ec9627dc2aacde848ea83e042763d8ce8b1e94547a00b316ce29447c5a036ca92e3baf5315088cdc473edecbd1

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	wdxsx.exe

C:\Users\Admin\AppData\Local\Temp\wdxsx.exe
"C:\Users\Admin\AppData\Local\Temp\wdxsx.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:4808

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads