Overview

overview

7

Static

static

1d4d65ee0d...c8.exe

windows7-x64

7

1d4d65ee0d...c8.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    180s
  • max time network
    188s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2022, 19:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1d4d65ee0d0836ac8e304bc01216ff2f5bd4e4fa381651334565f0d3e919a2c8.exe

  • Size

    4.2MB

  • MD5

    cb527e237701d0dff28c8359e2d759a7

  • SHA1

    3e8c3c382bf497235991b581e63a47fe269ab689

  • SHA256

    1d4d65ee0d0836ac8e304bc01216ff2f5bd4e4fa381651334565f0d3e919a2c8

  • SHA512

    616f5864c7451b0eb5084df385c87d7a90df6154a7ac32a76c2ff7a91cf0ab2e7f27b040c376e3f07e9f8e2fd16f700cb1761508a54118fb86a4f75c64bcac52

  • SSDEEP

    49152:SwqEFiewQqme7nsceKL20iznBEnaLeP+s8KuqGaX0ToIBAUZLYG:ZqEFiewQqme7nQq20yBD3JBAUZLR

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1d4d65ee0d0836ac8e304bc01216ff2f5bd4e4fa381651334565f0d3e919a2c8.exe
    "C:\Users\Admin\AppData\Local\Temp\1d4d65ee0d0836ac8e304bc01216ff2f5bd4e4fa381651334565f0d3e919a2c8.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\ybyh.dll
    Filesize

    52KB

    MD5

    8c9c5f7efdd9e23f1265e786dec9a52d

    SHA1

    5238d71c7044938ce7798a79ab1f8a6c31274274

    SHA256

    d47e227c4997a09e28336cf3f0acfdefd1c696efa7f971cb2db61ac9460e9900

    SHA512

    bb50a16ef2225d9a498449816fc52f99c5757746fbe4cdd7d1c1d6b2f119d0493a91cbb810bc6748b81b31472a97f6666cf3e5db0bed49555d22a9613bab8d4a

    Download Submit