Overview

overview

7

Static

static

fb3a6d5b25...34.exe

windows7-x64

7

fb3a6d5b25...34.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    93s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    04/12/2022, 10:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fb3a6d5b25d7f1b919083986363ae7b2188358d31f4a300fc3ad75786751a834.exe

  • Size

    520KB

  • MD5

    048e575a15665e0b96900cd0738d04a0

  • SHA1

    1e3ee5a8a35e650bc220fe77f8d12cbf50878394

  • SHA256

    fb3a6d5b25d7f1b919083986363ae7b2188358d31f4a300fc3ad75786751a834

  • SHA512

    c177afa69c6b871e6917b7d71a3ff4b000e4861166e04551b6bc80c32d8ed07061cdf43aad622865dbacbe5c286fd6073287fede865dd61762e34248ae8fd388

  • SSDEEP

    12288:PXkbXjaxdrcFX9J5HBTn7A1415PF7CA2gJphW:PkbTI6Tn7A14fPhL2K3W

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\fb3a6d5b25d7f1b919083986363ae7b2188358d31f4a300fc3ad75786751a834.exe
    "C:\Users\Admin\AppData\Local\Temp\fb3a6d5b25d7f1b919083986363ae7b2188358d31f4a300fc3ad75786751a834.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\MBX@7CC@1E31A30.###
    Filesize

    2KB

    MD5

    8374b353ca87fc47ed65d4d11bdf3995

    SHA1

    1064ea6dd1a3d8e27450269b7e118d0c35a291ef

    SHA256

    3cd0b7b9efebf53ee6b5192212cfe995dcb6c14ef7a55d98913b45986e43eab7

    SHA512

    bc2ef67a712561f123c0daa7c25d30acb26b0dc2d20c1c8354324a1ae06ad42d5e7d00ac3b15103f23d3535a5404973123b6af699dc43acb9d06d21c7f2ae886

    Download Submit

  • memory/1996-54-0x0000000000400000-0x0000000000446000-memory.dmp

    Filesize

    280KB

    Download

  • memory/1996-55-0x0000000000400000-0x0000000000446000-memory.dmp

    Filesize

    280KB

    Download

  • memory/1996-56-0x00000000763A1000-0x00000000763A3000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1996-58-0x0000000010000000-0x000000001017F000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1996-59-0x0000000010000000-0x000000001017F000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1996-61-0x0000000010000000-0x000000001017F000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1996-62-0x0000000000400000-0x0000000000446000-memory.dmp

    Filesize

    280KB

    Download

  • memory/1996-63-0x0000000010000000-0x000000001017F000-memory.dmp

    Filesize

    1.5MB

    Download