Overview

overview

7

Static

static

3

b753a1f0a4...69.exe

windows7-x64

7

b753a1f0a4...69.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    31s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    14/05/2023, 07:05

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369.exe

  • Size

    1.7MB

  • MD5

    c2e1be0ef38f245dab481c10696a6770

  • SHA1

    e4e667f4b694d368dd95d4335ce311211ac4094d

  • SHA256

    b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369

  • SHA512

    de6bc1420bdfbd04f60b95378b10e308c495914381e984e6607a8b727fe61011cf374af9a94b055ac61e6bfd436d7f9402f3b35ad7e83066aea5fa5f0197f4c4

  • SSDEEP

    24576:kcwK+IYtESTGeW49g/BzQVtlpK4buctpDPXPB3VbTPiaAYYarZxi/G3v:kJ48Vs4bBFPXZ3RTPirar08

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369.exe
    "C:\Users\Admin\AppData\Local\Temp\b753a1f0a4302ed99f9e983693bba6cd0ce437a8f72d66b2ac5ef37cca9f5369.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1296
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x554
    1⤵
      PID:956

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • \Users\Admin\AppData\Local\Temp\bass.dll
            Filesize

            103KB

            MD5

            8005750ec63eb5292884ad6183ae2e77

            SHA1

            c83e31655e271cd9ef5bff62b10f8d51eb3ebf29

            SHA256

            df9f56c4da160101567b0526845228ee481ee7d2f98391696fa27fe41f8acf15

            SHA512

            febbc6374e9a5c7c9029ccbff2c0ecf448d76927c8d720a4eae513b345d2a3f6de8cf774ae40dcd335af59537666e83ce994ec0adc8b9e8ab4575415e3c3e206

            Download Submit

          • memory/1296-57-0x0000000011000000-0x000000001104C000-memory.dmp

            Filesize

            304KB

            Download

          • memory/1296-58-0x0000000011000000-0x000000001104C000-memory.dmp

            Filesize

            304KB

            Download