Analysis
-
max time kernel
120s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
21-06-2024 04:58
Static task
static1
2 signatures
Behavioral task
behavioral1
Sample
ARIVAL NOTICE.exe
Resource
win7-20240611-en
2 signatures
150 seconds
General
-
Target
ARIVAL NOTICE.exe
-
Size
1.0MB
-
MD5
ba4626698cabac08fd9d2440f730e80c
-
SHA1
577f8e973cb926b58dffa2ec5a0ae1f9e451f128
-
SHA256
d6f3187ea8a4c0cb9e263a665487060b5b14caf184a5343b2ed928b67d16a264
-
SHA512
a15b63b4d018276272dd4e2667b79a859df83df8c96ea60b1bf9471e0138b40f7f4ce6c5d63424225fd5fbe1e6c55a9afd75e084b813967db7f49c9558465eda
-
SSDEEP
24576:SAHnh+eWsN3skA4RV1Hom2KXMmHao75RAQkLXWB3ryAv5:Vh+ZkldoPK8YaoX6jQ3ryQ
Score
1/10
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 2 IoCs
Processes:
ARIVAL NOTICE.exepid process 2056 ARIVAL NOTICE.exe 2056 ARIVAL NOTICE.exe -
Suspicious use of SendNotifyMessage 2 IoCs
Processes:
ARIVAL NOTICE.exepid process 2056 ARIVAL NOTICE.exe 2056 ARIVAL NOTICE.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2056-10-0x00000000000B0000-0x00000000000B4000-memory.dmpFilesize
16KB