Overview

overview

7

Static

static

3

9c57f21fbf...e7.exe

windows7-x64

7

9c57f21fbf...e7.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31/05/2023, 19:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9c57f21fbfca65a34b3fe2751743132ee958f7afdee75a64f27233021425d9e7.exe

  • Size

    2.4MB

  • MD5

    6e1832d5b7d9110457b66773fa7eedf3

  • SHA1

    cde67ca58850f8467415743f9a3906bb8421b193

  • SHA256

    9c57f21fbfca65a34b3fe2751743132ee958f7afdee75a64f27233021425d9e7

  • SHA512

    c0a1616caa4d61410509ec5805f354359c494a923a8cd50c2d79e6f118d60728db570aa65375f563cc5d632b05e0765f68e671880f19a2e352500d783a8c1053

  • SSDEEP

    49152:FnCydMHIltUMAR9CEqbFbm/Kwmgtxkix/CcwwWTT/Fb:WI0kx0/Vtxk4C

Score
7/10
upx

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • UPX packed file 24 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 31 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9c57f21fbfca65a34b3fe2751743132ee958f7afdee75a64f27233021425d9e7.exe
    "C:\Users\Admin\AppData\Local\Temp\9c57f21fbfca65a34b3fe2751743132ee958f7afdee75a64f27233021425d9e7.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\evb8B6D.tmp
    Filesize

    1KB

    MD5

    f255e834356af487df1c7cc0e25236aa

    SHA1

    520dc4d9e5b5155fca53f115e32177a43c4555ee

    SHA256

    35b75dc0453e44a3c9c814f9b169be0d1182fe810705727e57a45a7c3624740b

    SHA512

    0ccb8bc89656d6c6d2e77a1b2605037b39339ab6aded1b600326aa10a01871d2c021a2910babb4952bedb093b63702bdcbd627858e0ae4c3cdbf821cf3a557d4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\evb8C78.tmp
    Filesize

    1KB

    MD5

    68a5f5f870a647c4b7021b1e850423c6

    SHA1

    8689cbac1490a496cd62447395125b2f96d0c88e

    SHA256

    2a662b20e92376aa270246fb7002ac9b63562459335efa75229e2a37198a1ffd

    SHA512

    b702471736908987497a71308b2acb50e30f07ca8a8911d994cde2897298d80c44df4c2457a5eed0e2e2f463630c7fb1209318760495689d319d46e124125387

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\evb91D8.tmp
    Filesize

    1KB

    MD5

    f4ce53f834da8013abc8a4b367c97b35

    SHA1

    31d4c6188687df65ce31e6db57bcf3d93150c3ee

    SHA256

    1c36a0bb41fc6e134298fca98b9a5e82e86922cba719e6f8a3990bc446bc7227

    SHA512

    4dd0a213c752c0b662405e0d1fb8335043a977499577ce52b805068486662cbc8d6a8c5712be9f01ca4439e034e1e3ac6aa0e0f4e2c8eb1390fe4f0269893605

    Download Submit

  • memory/1900-173-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-177-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-146-0x0000000002F20000-0x0000000002F50000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1900-149-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-148-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-179-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-152-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-154-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-156-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-158-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-160-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-161-0x0000000010000000-0x000000001014B000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/1900-163-0x0000000002F20000-0x0000000002F50000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1900-165-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-167-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-171-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-169-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-133-0x0000000000400000-0x000000000047B000-memory.dmp

    Filesize

    492KB

    Download

  • memory/1900-144-0x0000000002F20000-0x0000000002F50000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1900-175-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-150-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-181-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-183-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-185-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-187-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-189-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-191-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-193-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1900-137-0x0000000010000000-0x000000001014B000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/1900-197-0x0000000003050000-0x0000000003091000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1900-201-0x0000000003050000-0x0000000003091000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1900-205-0x0000000003050000-0x0000000003091000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1900-206-0x0000000000400000-0x000000000047B000-memory.dmp

    Filesize

    492KB

    Download

  • memory/1900-207-0x0000000010000000-0x000000001014B000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/1900-208-0x0000000002F20000-0x0000000002F50000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1900-209-0x0000000003050000-0x0000000003091000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1900-210-0x0000000002FE0000-0x000000000301E000-memory.dmp

    Filesize

    248KB

    Download