Overview

overview

9

Static

static

768f9d7bce...39.exe

windows7-x64

9

768f9d7bce...39.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    130s
  • max time network
    49s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    23-11-2022 21:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    768f9d7bce5ec2adbbca8e30c7f6c3e6b411f1542b0ad77fe22aecfbcf372539.exe

  • Size

    192KB

  • MD5

    8c266b8c43aaf48ea502514810049d2a

  • SHA1

    312f51528b7b975a8a5945b5c4a90ae887bb3549

  • SHA256

    768f9d7bce5ec2adbbca8e30c7f6c3e6b411f1542b0ad77fe22aecfbcf372539

  • SHA512

    9245a190d93242e29909fa41dff726f8af4483f60edfb3d49c92f7d414dd534881fb1851c2e70dd652b09133dd0f8518afacd9e345f5fe8152dabbcbb304585c

  • SSDEEP

    6144:R3J2OLgFJ8eEfckivSyb5qiFJm/ZFUmA5v/k:RZ2OLgQzwLqym/ZFti/k

Score
9/10

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\768f9d7bce5ec2adbbca8e30c7f6c3e6b411f1542b0ad77fe22aecfbcf372539.exe
    "C:\Users\Admin\AppData\Local\Temp\768f9d7bce5ec2adbbca8e30c7f6c3e6b411f1542b0ad77fe22aecfbcf372539.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\uykF7C8.tmp
    Filesize

    172KB

    MD5

    4f407b29d53e9eb54e22d096fce82aa7

    SHA1

    a4ee25b066cac19ff679dd491f5791652bb71185

    SHA256

    cf0ecf30fc95800a34105acb9bcb484bb594a35b3ef26ace8f122af4f9f888dc

    SHA512

    325f7b599455195101e4c0dafd3654906d20ed2c1ce2a5f38784635e16ab545df6ee44a83bed6128239be2dee5be110552c7b246b7f52482ab31552e14b54183

    Download Submit

  • memory/1504-55-0x0000000001000000-0x0000000001008000-memory.dmp

    Filesize

    32KB

    Download

  • memory/1504-56-0x00000000001D0000-0x0000000000244000-memory.dmp

    Filesize

    464KB

    Download