Overview

overview

7

Static

static

3

7a7b5aa46b488e_JC.exe

windows7-x64

7

7a7b5aa46b488e_JC.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    16/07/2023, 16:59

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    7a7b5aa46b488e_JC.exe

  • Size

    408KB

  • MD5

    7a7b5aa46b488e53283949bbce922d06

  • SHA1

    3a316cb81d2373f98b0829a6b15f232e0824e92a

  • SHA256

    fdc0e6b3078ce4346a212f4d090d52e7c68bdccd5bfb98ba1e4bda2db29eb55a

  • SHA512

    914dc39255a1bbf6d1617cda33a464c09b5d46e5dd7cb7368becb93e15ccdb29ffe12f10103d7db6c2a0c3d170aa498a29926166ecec3dfbe10ffbac02f42cc1

  • SSDEEP

    12288:gplrVbDdQaqdS/ofraFErH8uB2Wm0SXsNr5FU:8xRQ+Fucuvm0as

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 2 IoCs
  • Drops file in Program Files directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7a7b5aa46b488e_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\7a7b5aa46b488e_JC.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in Program Files directory
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1152
    • C:\Program Files\Multimedia\Synthesis.exe
      "C:\Program Files\Multimedia\Synthesis.exe" "33201"
      2⤵
      • Executes dropped EXE
      • Suspicious use of SetWindowsHookEx
      PID:1236

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Program Files\Multimedia\Synthesis.exe
          Filesize

          408KB

          MD5

          db811e2da35a116197ec19ec83d6541d

          SHA1

          1e56eb7f57f59b3e2d13530f4938436595701b16

          SHA256

          fb7092f2de6bc0dad328c4f2f54939139375a458093e470117e0ef4fd4b89727

          SHA512

          9017d6e062b06d281f11699c9bd010092af557cee9f503ddb55b0111ba56f64bb06dd1d9b78f12f2e536233c4fbd923e5d5431d4497920f12e43a937c7866785

          Download Submit

        • C:\Program Files\Multimedia\Synthesis.exe
          Filesize

          408KB

          MD5

          db811e2da35a116197ec19ec83d6541d

          SHA1

          1e56eb7f57f59b3e2d13530f4938436595701b16

          SHA256

          fb7092f2de6bc0dad328c4f2f54939139375a458093e470117e0ef4fd4b89727

          SHA512

          9017d6e062b06d281f11699c9bd010092af557cee9f503ddb55b0111ba56f64bb06dd1d9b78f12f2e536233c4fbd923e5d5431d4497920f12e43a937c7866785

          Download Submit

        • \Program Files\Multimedia\Synthesis.exe
          Filesize

          408KB

          MD5

          db811e2da35a116197ec19ec83d6541d

          SHA1

          1e56eb7f57f59b3e2d13530f4938436595701b16

          SHA256

          fb7092f2de6bc0dad328c4f2f54939139375a458093e470117e0ef4fd4b89727

          SHA512

          9017d6e062b06d281f11699c9bd010092af557cee9f503ddb55b0111ba56f64bb06dd1d9b78f12f2e536233c4fbd923e5d5431d4497920f12e43a937c7866785

          Download Submit

        • \Program Files\Multimedia\Synthesis.exe
          Filesize

          408KB

          MD5

          db811e2da35a116197ec19ec83d6541d

          SHA1

          1e56eb7f57f59b3e2d13530f4938436595701b16

          SHA256

          fb7092f2de6bc0dad328c4f2f54939139375a458093e470117e0ef4fd4b89727

          SHA512

          9017d6e062b06d281f11699c9bd010092af557cee9f503ddb55b0111ba56f64bb06dd1d9b78f12f2e536233c4fbd923e5d5431d4497920f12e43a937c7866785

          Download Submit