Overview

overview

8

Static

static

1

544d50ace1...ea.exe

windows7-x64

8

544d50ace1...ea.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    114s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/03/2023, 16:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    544d50ace173ae066982b4e91158d9eeedf16d2d27705c12d8be58f04041bdea.exe

  • Size

    2.3MB

  • MD5

    af7ec7af062bec8bba800b44d95fa90f

  • SHA1

    197f7ea3df0f55003c2cc0e1d51335ff5b4fa769

  • SHA256

    544d50ace173ae066982b4e91158d9eeedf16d2d27705c12d8be58f04041bdea

  • SHA512

    5c1c3804929db5f134ff7ac401eda75079a0510a83deea27c43214f799d65d8591fb06402c1618acf87a8848f1af81834768fec129020025156048ba5402ad89

  • SSDEEP

    24576:p6lRdCR2uulPS+RVfP7JjJnNU5Q6gAbRiMYQjbp0pdBdQzCZ3uGpObzozEH095a7:sRcU9Vth/WRiLDdBdmq39/+r5u8Qe

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\544d50ace173ae066982b4e91158d9eeedf16d2d27705c12d8be58f04041bdea.exe
    "C:\Users\Admin\AppData\Local\Temp\544d50ace173ae066982b4e91158d9eeedf16d2d27705c12d8be58f04041bdea.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    6c966d17a9b860ae3e2d38ca9c88b400

    SHA1

    3dff151bb5e95988343757479cb4891c0ec1726b

    SHA256

    5e0c373224698c50b1245c92bf01efe63f5c6e4750f58a7c09e4fb26e6e203aa

    SHA512

    653244f647278f051bef349bdb188ffa08ff804408dd381e69d5fc64881fc4e61be6e33433aed85c69b1e38b2e6497473c569c34155b3230099b594f9c9aaa39

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    e0794ef0bf38e1ac438f1f8c5192c2bc

    SHA1

    70921adac6ad8b2be202bb3bd762892719ae5760

    SHA256

    3e49ee7414a6a2e6e1601091577739eaa019a7131896f0f9991e327c43b46e10

    SHA512

    bb85051f3a544173b7f894662b37d4a7249d2d47dcf085ba629da9711619f40accb9d13d96f38416aac9ea341ff202db2cd0a4350a295b6bc7df0a2776d073fa

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    2e11dbd9ce497d271fc79f3bfacb1928

    SHA1

    48cc07f92faa5e921a160f9ad2b551ace185cf3b

    SHA256

    9f0a36aa2aadf3e6f569de02e193e865b0035727fb2c5f390de50b57ba7c4137

    SHA512

    bfc5095470193d7fad182a47d96656f9ddf232b9278d82e8cb713f03fcccb17b0c5a6cb1aafa4919ced325318055005278bd9f5114ebea102d8bdcbeab9bc6cd

    Download Submit