Overview

overview

8

Static

static

youtube_do...hd.exe

windows7-x64

8

youtube_do...hd.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    148s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    27/12/2022, 21:19

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    youtube_downloader_hd.exe

  • Size

    19.5MB

  • MD5

    9c7cc012c1706b8e96bed492bdc8bf4b

  • SHA1

    3deaaf2b23570f3ec297b5eff07088f0919747b0

  • SHA256

    926f2b69370afe44439ab652a2cf03cfe6785091a5c358057218e2166313aaba

  • SHA512

    946a4b1563262702a127694fcdd655b11a68b3004680901e01fe6ba480f23ae0d15095923df754bd77886b7ac3f4c370375ffccf4b62f30750a443714609ad0d

  • SSDEEP

    393216:Yjz09IMoouLAWdcDMuZBTlA7SnVUJ3yO18h1o7jwXI/FUMKWGDZ:YMoDLAfM+ISVUAJwWHMhGDZ

Score
8/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\youtube_downloader_hd.exe
    "C:\Users\Admin\AppData\Local\Temp\youtube_downloader_hd.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:548
    • C:\Users\Admin\AppData\Local\Temp\is-44MVL.tmp\youtube_downloader_hd.tmp
      "C:\Users\Admin\AppData\Local\Temp\is-44MVL.tmp\youtube_downloader_hd.tmp" /SL5="$70060,20156187,423424,C:\Users\Admin\AppData\Local\Temp\youtube_downloader_hd.exe"
      2⤵
      • Executes dropped EXE
      PID:2564

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\is-44MVL.tmp\youtube_downloader_hd.tmp
          Filesize

          1.0MB

          MD5

          1c2c2eb033d139cca30a39d89ad5a59a

          SHA1

          1ddd2d3ae73eb61e73614b284abf368ad5be72c8

          SHA256

          4166e2cbee9d71693eb5454b34673527b299be9d388a93b058d18fe7fa7e2b47

          SHA512

          7e666b68ab42d922881681386b3143b06e7a4edc151d975bf6481817f8f50c2158d86dd64745c4b86790d112a3b371159098025528c6b9cb14a1f984a61f0d7f

          Download Submit

        • memory/548-132-0x0000000000400000-0x000000000046E000-memory.dmp

          Filesize

          440KB

          Download

        • memory/548-136-0x0000000000400000-0x000000000046E000-memory.dmp

          Filesize

          440KB

          Download

        • memory/548-137-0x0000000000400000-0x000000000046E000-memory.dmp

          Filesize

          440KB

          Download