Overview

overview

10

Static

static

10

0a36d74a14...04.exe

windows10-2004-x64

8

0b8b9525ea...96.exe

windows10-2004-x64

1

0bcbf39901...03.exe

windows10-2004-x64

10

0e5e999136...e7.exe

windows10-2004-x64

10

0fc0de254b...ce.exe

windows10-2004-x64

10

1a47c4fd5a...a8.exe

windows10-2004-x64

7

1a6ed538d9...ed.exe

windows10-2004-x64

7

1ac9b17068...d7.exe

windows10-2004-x64

8

1be6fdb2df...e9.exe

windows10-2004-x64

10

2bbbb9b0cd...b2.exe

windows10-2004-x64

10

2cda90e9e8...33.exe

windows10-2004-x64

3

2d58b1a373...aa.exe

windows10-2004-x64

5

2e966d3480...2e.exe

windows10-2004-x64

7

3a0297561d...1c.exe

windows10-2004-x64

10

3a90ad3258...8d.exe

windows10-2004-x64

6

3e76598b80...50.exe

windows10-2004-x64

10

4a5b5eb5a4...36.exe

windows10-2004-x64

10

4b482e8492...8c.exe

windows10-2004-x64

6

4bd46a2850...9c.exe

windows10-2004-x64

10

4cca8b360d...0a.exe

windows10-2004-x64

10

4e31114ffd...f7.exe

windows10-2004-x64

10

5ac2fcc4da...83.exe

windows10-2004-x64

10

5b25182d96...14.exe

windows10-2004-x64

7

5ddb366ead...46.exe

windows10-2004-x64

9

5f1364d246...bc.exe

windows10-2004-x64

10

6e0c9935ea...65.exe

windows10-2004-x64

1

6ea27426ff...08.exe

windows10-2004-x64

4

7dad12bd22...d2.exe

windows10-2004-x64

8

7db9e09e8b...71.exe

windows10-2004-x64

3

7e9af10bfe...5a.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    122s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250313-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250313-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/04/2025, 08:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6e0c9935ea61a09f4ced2b9a871b5f21b637a7979b21aa4ccb490a9442182865.exe

  • Size

    155KB

  • MD5

    830f6068c5612b827e0bb600b1ac688e

  • SHA1

    4fb031f28b286a7cacca2f27cb254d8169a345d9

  • SHA256

    6e0c9935ea61a09f4ced2b9a871b5f21b637a7979b21aa4ccb490a9442182865

  • SHA512

    e5162fe2c16792ee375f3b0c00095ae9c5ff2e4775944484bf3472b9e93c75b4124b5237397183613d20a3159c04afa6cb99404aec42e5e6bcd674433bd2ddc4

  • SSDEEP

    3072:NKaVJNOe2J+ypc8TXWvHxqBuedLX6LYxmVsu1edEYdY0z:7Oe2J+yK/0kGXVxmsz

Score
1/10

Malware Config

Signatures

  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

  • Suspicious behavior: EnumeratesProcesses 12 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6e0c9935ea61a09f4ced2b9a871b5f21b637a7979b21aa4ccb490a9442182865.exe
    "C:\Users\Admin\AppData\Local\Temp\6e0c9935ea61a09f4ced2b9a871b5f21b637a7979b21aa4ccb490a9442182865.exe"
    1⤵
    • Checks processor information in registry
    • Suspicious behavior: EnumeratesProcesses
    PID:2852

Network

MITRE ATT&CK Enterprise v16

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2852-0-0x000001857F350000-0x000001857F351000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2852-2-0x0000000180000000-0x0000000180068000-memory.dmp

    Filesize

    416KB

    Download

  • memory/2852-5-0x00007FF81C970000-0x00007FF81CB65000-memory.dmp

    Filesize

    2.0MB

    Download