189c456c653e587b81b4f3950b102a94c4570c2a7057c50b138b511162a2c46a

Submit
Reports

Overview

overview

Static

static

88bc7b6a62...00.exe

windows7-x64

88bc7b6a62...00.exe

windows10-2004-x64

88cdf3a075...59.exe

windows7-x64

88cdf3a075...59.exe

windows10-2004-x64

89000a0d00...5b.exe

windows7-x64

89000a0d00...5b.exe

windows10-2004-x64

89270d6b49...b4.exe

windows7-x64

89270d6b49...b4.exe

windows10-2004-x64

892ac0ac36...51.exe

windows7-x64

892ac0ac36...51.exe

windows10-2004-x64

894b900bb7...92.exe

windows7-x64

894b900bb7...92.exe

windows10-2004-x64

896493118e...17.exe

windows7-x64

896493118e...17.exe

windows10-2004-x64

89652cefa9...84.exe

windows7-x64

89652cefa9...84.exe

windows10-2004-x64

897255af35...03.exe

windows7-x64

897255af35...03.exe

windows10-2004-x64

897b60be56...d4.exe

windows7-x64

897b60be56...d4.exe

windows10-2004-x64

89a1a21003...9d.exe

windows7-x64

89a1a21003...9d.exe

windows10-2004-x64

89ed231ad6...9a.exe

windows7-x64

89ed231ad6...9a.exe

windows10-2004-x64

8a4e1b5c29...83.exe

windows7-x64

8a4e1b5c29...83.exe

windows10-2004-x64

8a7ce080bb...ba.exe

windows7-x64

8a7ce080bb...ba.exe

windows10-2004-x64

8aa071d8cc...3d.exe

windows7-x64

8aa071d8cc...3d.exe

windows10-2004-x64

8acb86332d...4c.exe

windows7-x64

8acb86332d...4c.exe

windows10-2004-x64

Analysis

max time kernel
104s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
22/03/2025, 06:13

Sharing

Copy URL

Twitter E-mail

Static task

static1

h2cked by taksher rat ratted ig xworm njrat dcrat quasar

8 signatures

Behavioral task

behavioral1

Sample

88bc7b6a627017c4f048d13e756f27b0adc94dc25d0b53c42a2cbdac36177600.exe

Resource

win7-20241023-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

88bc7b6a627017c4f048d13e756f27b0adc94dc25d0b53c42a2cbdac36177600.exe

Resource

win10v2004-20250314-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

88cdf3a075a9f38022db50379cd5771e1992a58af68f516812b40c8320dabc59.exe

Resource

win7-20240903-en

imminent discovery spyware trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral4

Sample

88cdf3a075a9f38022db50379cd5771e1992a58af68f516812b40c8320dabc59.exe

Resource

win10v2004-20250314-en

imminent discovery spyware trojan

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral5

Sample

89000a0d0047c48b96288186968f343d17f06f470b2985cfdd4ebcf56f9efe5b.exe

Resource

win7-20240903-en

dcrat defense_evasion discovery infostealer rat spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral6

Sample

89000a0d0047c48b96288186968f343d17f06f470b2985cfdd4ebcf56f9efe5b.exe

Resource

win10v2004-20250313-en

dcrat defense_evasion discovery infostealer rat spyware stealer

windows10-2004-x64

18 signatures

150 seconds

Behavioral task

behavioral7

Sample

89270d6b49877a5303ff4416c74830b4.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

89270d6b49877a5303ff4416c74830b4.exe

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

892ac0ac36d3e692e581bde711ae2651.exe

Resource

win7-20241010-en

discovery execution persistence

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral10

Sample

892ac0ac36d3e692e581bde711ae2651.exe

Resource

win10v2004-20250314-en

discovery execution persistence

windows10-2004-x64

16 signatures

150 seconds

Behavioral task

behavioral11

Sample

894b900bb7817bc5ddd0e3ad48eb9c6fbe4ad9ad7741358d311bafe03b988a92.exe

Resource

win7-20241010-en

persistence privilege_escalation

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral12

Sample

894b900bb7817bc5ddd0e3ad48eb9c6fbe4ad9ad7741358d311bafe03b988a92.exe

Resource

win10v2004-20250314-en

persistence privilege_escalation

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral13

Sample

896493118eef774a76d4ea1ef6ead5a805b0d99452a2c423da8c617c459f5b17.exe

Resource

win7-20250207-en

defense_evasion execution trojan

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral14

Sample

896493118eef774a76d4ea1ef6ead5a805b0d99452a2c423da8c617c459f5b17.exe

Resource

win10v2004-20250314-en

defense_evasion execution trojan

windows10-2004-x64

16 signatures

150 seconds

Behavioral task

behavioral15

Sample

89652cefa9366ca2d97d0e0b49525984.exe

Resource

win7-20250207-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

89652cefa9366ca2d97d0e0b49525984.exe

Resource

win10v2004-20250314-en

collection defense_evasion discovery execution

windows10-2004-x64

22 signatures

150 seconds

Behavioral task

behavioral17

Sample

897255af3577597d102569ae36e4a05af7c024eaaaf4b26d4515002d2b257303.exe

Resource

win7-20240903-en

collection credential_access discovery persistence spyware stealer

windows7-x64

19 signatures

150 seconds

Behavioral task

behavioral18

Sample

897255af3577597d102569ae36e4a05af7c024eaaaf4b26d4515002d2b257303.exe

Resource

win10v2004-20250314-en

collection credential_access discovery persistence spyware stealer

windows10-2004-x64

19 signatures

150 seconds

Behavioral task

behavioral19

Sample

897b60be5611091a83c5ceb48f7d2bd4.exe

Resource

win7-20240903-en

discovery

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral20

Sample

897b60be5611091a83c5ceb48f7d2bd4.exe

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

14 signatures

150 seconds

Behavioral task

behavioral21

Sample

89a1a21003baf78498607da9565222de2ca042713740ff1005123e24f6b2449d.exe

Resource

win7-20240729-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral22

Sample

89a1a21003baf78498607da9565222de2ca042713740ff1005123e24f6b2449d.exe

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral23

Sample

89ed231ad61a9e5a7fd0ab9f2bd75b9a.exe

Resource

win7-20240903-en

dcrat defense_evasion execution infostealer rat trojan

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral24

Sample

89ed231ad61a9e5a7fd0ab9f2bd75b9a.exe

Resource

win10v2004-20250314-en

dcrat defense_evasion execution infostealer rat trojan

windows10-2004-x64

20 signatures

150 seconds

Behavioral task

behavioral25

Sample

8a4e1b5c2998360f622e0279dee68fb7e7130c4a0fa23749b404f70c10dfcd83.exe

Resource

win7-20240903-en

njrat neuf defense_evasion discovery persistence privilege_escalation trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral26

Sample

8a4e1b5c2998360f622e0279dee68fb7e7130c4a0fa23749b404f70c10dfcd83.exe

Resource

win10v2004-20250314-en

njrat neuf defense_evasion discovery persistence privilege_escalation trojan

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral27

Sample

8a7ce080bb43fc3edf2ddf3b300355ba.exe

Resource

win7-20240903-en

xworm rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral28

Sample

8a7ce080bb43fc3edf2ddf3b300355ba.exe

Resource

win10v2004-20250314-en

xworm rat trojan

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral29

Sample

8aa071d8cc2dd74176f041bba8762b3d.exe

Resource

win7-20250207-en

discovery

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral30

Sample

8aa071d8cc2dd74176f041bba8762b3d.exe

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral31

Sample

8acb86332d3165ca0750e27ecd4b4948ab35ade98d43820de667e14ff849c64c.exe

Resource

win7-20241023-en

collection credential_access discovery persistence spyware stealer

windows7-x64

19 signatures

150 seconds

Behavioral task

behavioral32

Sample

8acb86332d3165ca0750e27ecd4b4948ab35ade98d43820de667e14ff849c64c.exe

Resource

win10v2004-20250314-en

collection credential_access discovery persistence spyware stealer

windows10-2004-x64

19 signatures

150 seconds

Report Analysis Logs

General

Target

89270d6b49877a5303ff4416c74830b4.exe
Size

472KB
MD5

89270d6b49877a5303ff4416c74830b4
SHA1

9e33495c12b9c1017cebfc40be1fdc7016f1538c
SHA256

529adbcfdf37978d4c9b09f571e2b59d92d074a9c7c033eafcb52a4ca4969cb9
SHA512

ba3e50b616795f109643c959d988cb64bb009b7d3fa801811dccf5264abfb12b097e37ed87be460d576065c359b3a3f6be325741c03d6585e27f22e0c2a110c4
SSDEEP

6144:A/VUwyCKfIeoguR8pLLz3nqKTQP2tXjfS4ysVKjW06my7kr3btmzRqoXeqXq/i5J:chyCo5o7KLLDqK22tOF/05S+X6r6Ic

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\89270d6b49877a5303ff4416c74830b4.exe
"C:\Users\Admin\AppData\Local\Temp\89270d6b49877a5303ff4416c74830b4.exe"
1⤵
PID:4036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4036-0-0x00007FF9AFDA3000-0x00007FF9AFDA5000-memory.dmp

Filesize
8KB

Download
memory/4036-1-0x0000000000150000-0x00000000001CC000-memory.dmp

Filesize
496KB

Download