b9b8c850493be6e607e8889371bcb565ac25fada7d27cca10230e50b253b3cd6

Submit
Reports

Overview

overview

Static

static

14ed02af2b...e1.exe

windows7-x64

14ed02af2b...e1.exe

windows10-2004-x64

166bcfa4ec...88.exe

windows7-x64

166bcfa4ec...88.exe

windows10-2004-x64

18f6e53cc2...bc.exe

windows7-x64

18f6e53cc2...bc.exe

windows10-2004-x64

1ecdd2baa0...97.exe

windows7-x64

1ecdd2baa0...97.exe

windows10-2004-x64

259af5147b...f4.exe

windows7-x64

259af5147b...f4.exe

windows10-2004-x64

4c8b1c9ed7...16.exe

windows7-x64

4c8b1c9ed7...16.exe

windows10-2004-x64

4cca8b360d...0a.exe

windows7-x64

4cca8b360d...0a.exe

windows10-2004-x64

57f8e4e1d3...c5.exe

windows7-x64

57f8e4e1d3...c5.exe

windows10-2004-x64

922cba3477...c3.exe

windows7-x64

922cba3477...c3.exe

windows10-2004-x64

b5bd106864...88.exe

windows7-x64

b5bd106864...88.exe

windows10-2004-x64

da5f0322d3...24.exe

windows7-x64

da5f0322d3...24.exe

windows10-2004-x64

ec7b605aae...33.exe

windows7-x64

ec7b605aae...33.exe

windows10-2004-x64

ff70347ce0...0c.exe

windows7-x64

ff70347ce0...0c.exe

windows10-2004-x64

Analysis

max time kernel
147s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20250129-en
resource tags

arch:x64arch:x86image:win10v2004-20250129-enlocale:en-usos:windows10-2004-x64system
submitted
31-01-2025 08:45

Sharing

Copy URL

Twitter E-mail

Static task

static1

6 signatures

Behavioral task

behavioral1

Sample

14ed02af2bfe80834dd59bd49650f5c982da1a9bf2a437450ce113eb6fcf9ee1.exe

Resource

win7-20241010-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

14ed02af2bfe80834dd59bd49650f5c982da1a9bf2a437450ce113eb6fcf9ee1.exe

Resource

win10v2004-20250129-en

discovery persistence

windows10-2004-x64

12 signatures

150 seconds

Behavioral task

behavioral3

Sample

166bcfa4ec03b68bc4ee3fc95806f6d155575be88cbc3c4b7aa5891ca3cc6a88.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

166bcfa4ec03b68bc4ee3fc95806f6d155575be88cbc3c4b7aa5891ca3cc6a88.exe

Resource

win10v2004-20250129-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

18f6e53cc27bda15c98f79e76f9210bf05b1d8528b96cf4c1523a7aeec7532bc.exe

Resource

win7-20240708-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

18f6e53cc27bda15c98f79e76f9210bf05b1d8528b96cf4c1523a7aeec7532bc.exe

Resource

win10v2004-20250129-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

1ecdd2baa03fa76ba2313ef30be6678fda212eaf2878d8e2b9557ad2aec9f197.exe

Resource

win7-20241010-en

adware defense_evasion discovery spyware stealer trojan upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral8

Sample

1ecdd2baa03fa76ba2313ef30be6678fda212eaf2878d8e2b9557ad2aec9f197.exe

Resource

win10v2004-20250129-en

adware defense_evasion discovery spyware stealer trojan upx

windows10-2004-x64

24 signatures

150 seconds

Behavioral task

behavioral9

Sample

259af5147b99b4c014aeb425aaf236fc76ab60f1aa06efa77027393854e5fff4.exe

Resource

win7-20240903-en

revengerat discovery stealer trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral10

Sample

259af5147b99b4c014aeb425aaf236fc76ab60f1aa06efa77027393854e5fff4.exe

Resource

win10v2004-20241007-en

revengerat discovery stealer trojan

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral11

Sample

4c8b1c9ed7ba0d921b0971a3e5de96bfdb3b18024e8880c7aaa2759f13c01316.exe

Resource

win7-20240708-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

4c8b1c9ed7ba0d921b0971a3e5de96bfdb3b18024e8880c7aaa2759f13c01316.exe

Resource

win10v2004-20250129-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

4cca8b360d5053a789ea822ab80261dc6f010c1c72b0d449ca8cdcaffd2e2c0a.exe

Resource

win7-20241010-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

4cca8b360d5053a789ea822ab80261dc6f010c1c72b0d449ca8cdcaffd2e2c0a.exe

Resource

win10v2004-20250129-en

quasar alinaa discovery spyware trojan

windows10-2004-x64

10 signatures

150 seconds

Behavioral task

behavioral15

Sample

57f8e4e1d3339c0abadc0f64fc6a4abaff19cd138724cdbb3fae5f37905547c5.exe

Resource

win7-20240903-en

discovery spyware stealer upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral16

Sample

57f8e4e1d3339c0abadc0f64fc6a4abaff19cd138724cdbb3fae5f37905547c5.exe

Resource

win10v2004-20241007-en

discovery spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral17

Sample

922cba3477ffa83332622df72c2e580fcb3bdd437952c4b6b2c096b4a094acc3.exe

Resource

win7-20241023-en

discovery

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral18

Sample

922cba3477ffa83332622df72c2e580fcb3bdd437952c4b6b2c096b4a094acc3.exe

Resource

win10v2004-20250129-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral19

Sample

b5bd1068644f0c38e7aa1cb38dcc40eacf146be9b43d8fd865fddee61ea9a588.exe

Resource

win7-20241010-en

remcos remotehost discovery rat

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral20

Sample

b5bd1068644f0c38e7aa1cb38dcc40eacf146be9b43d8fd865fddee61ea9a588.exe

Resource

win10v2004-20250129-en

remcos remotehost discovery rat

windows10-2004-x64

12 signatures

150 seconds

Behavioral task

behavioral21

Sample

da5f0322d31a05d525ee8b37a748670be35647c692a85fdb8997742f5fed3524.exe

Resource

win7-20240903-en

upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral22

Sample

da5f0322d31a05d525ee8b37a748670be35647c692a85fdb8997742f5fed3524.exe

Resource

win10v2004-20250129-en

collection credential_access defense_evasion discovery execution persistence privilege_escalation spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

Behavioral task

behavioral23

Sample

ec7b605aaefd00f0507f43c78590266b74345bc9308eba26fc542b6a0ae5e133.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

ec7b605aaefd00f0507f43c78590266b74345bc9308eba26fc542b6a0ae5e133.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral25

Sample

ff70347ce0294dc6741692164f65608d9bb47e396486c50da08a94a5b3cbe50c.exe

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

ff70347ce0294dc6741692164f65608d9bb47e396486c50da08a94a5b3cbe50c.exe

Resource

win10v2004-20250129-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

ff70347ce0294dc6741692164f65608d9bb47e396486c50da08a94a5b3cbe50c.exe
Size

20KB
MD5

3f4ef305314bd83bf8f35c93eb02e56b
SHA1

545dfee7ed9699ba16f24d633855307e8a6fac42
SHA256

ff70347ce0294dc6741692164f65608d9bb47e396486c50da08a94a5b3cbe50c
SHA512

a9ad43f636851d78d9c84aa9b1853f901df32c0ae002fbfa16b127a71c2a3adf9181a1c1dd63bdbee05ee8d3604f9e592b3a22b91741c8686a955fa9c292685e
SSDEEP

384:Jys1v3fDuE0pRMSXSmhSTzDE6HnN9ng0ussJ:ssl3fD3EXSmgTzBNPussJ

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\ff70347ce0294dc6741692164f65608d9bb47e396486c50da08a94a5b3cbe50c.exe
"C:\Users\Admin\AppData\Local\Temp\ff70347ce0294dc6741692164f65608d9bb47e396486c50da08a94a5b3cbe50c.exe"
1⤵
PID:2820

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2820-0-0x00007FF7E6E50000-0x00007FF7E6E5B000-memory.dmp

Filesize
44KB

Download
memory/2820-1-0x00007FF7E6E50000-0x00007FF7E6E5B000-memory.dmp

Filesize
44KB

Download