Analysis

  • max time kernel
    93s
  • max time network
    94s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/01/2025, 15:11

General

  • Target

    5a1f84ec4d12273d3382547f4515e40abba1a9b9273c5efd4eca39d41758c406.exe

  • Size

    21KB

  • MD5

    45dbbc28eacbc57a096b2cf73ffdaa9f

  • SHA1

    77de3d209e864a306339691a9804f08f77493615

  • SHA256

    5a1f84ec4d12273d3382547f4515e40abba1a9b9273c5efd4eca39d41758c406

  • SHA512

    8034b92e9cdf8461bca6ca6546fd52b794e63bc624bcd64c243547076bdac340c58a9375440faf72fec4e0b47b0b90d3390ad992734b88ed4dfb17ffe9932489

  • SSDEEP

    384:eJp6UriiUE4yL+DfKVnss2OF3trr9L1XhyoIX8swxqAtiYOTa4ZOuWrBeUWdgC8v:gH4Q+DfKN33trZphBLZqAYYOu4RHNtc

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\5a1f84ec4d12273d3382547f4515e40abba1a9b9273c5efd4eca39d41758c406.exe
    "C:\Users\Admin\AppData\Local\Temp\5a1f84ec4d12273d3382547f4515e40abba1a9b9273c5efd4eca39d41758c406.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2452

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2452-0-0x0000000001000000-0x000000000101A000-memory.dmp

          Filesize

          104KB

        • memory/2452-1-0x0000000001000000-0x000000000101A000-memory.dmp

          Filesize

          104KB