Overview

overview

10

Static

static

3

be95f799ad...86.exe

windows7-x64

10

be95f799ad...86.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    99s
  • max time network
    144s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250217-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250217-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/03/2025, 14:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    be95f799ad6467ccd0950995253b43912c16353e52b473fcae821d638d781c86.exe

  • Size

    1.5MB

  • MD5

    2d12f3015810dab49e9161cef00b4d0a

  • SHA1

    b25b20c0ba212cbd5e07a9f3eef0890ab18f6967

  • SHA256

    be95f799ad6467ccd0950995253b43912c16353e52b473fcae821d638d781c86

  • SHA512

    c03856ef67a77e856c22fa98dae876d3249e9e3a3a35aa2e8200088c8015665d1c16c2c320c05f37444414de96ee5adbe2ab9caedeb6c78bb251ab09b1a9b6ad

  • SSDEEP

    24576:QU5WC5GefgFc8AJNW0SXMcDGgdJ+kk/N/LejXaki8f4QNG4QJ0x/db3rVZKCA:hWC5Ge4XwkBDGg/+L/ijTeR0xFbbfKCA

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\be95f799ad6467ccd0950995253b43912c16353e52b473fcae821d638d781c86.exe
    "C:\Users\Admin\AppData\Local\Temp\be95f799ad6467ccd0950995253b43912c16353e52b473fcae821d638d781c86.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:3028

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3028-0-0x0000000000400000-0x000000000063B000-memory.dmp

    Filesize

    2.2MB

    Download

  • memory/3028-1-0x00000000758F0000-0x0000000075B05000-memory.dmp

    Filesize

    2.1MB

    Download

  • memory/3028-3275-0x0000000000400000-0x000000000063B000-memory.dmp

    Filesize

    2.2MB

    Download