e147eabe55bc2f544641dd78f3fe2ecf4a8227c4e0e5c8bf1c5103f95417ebca

Analysis

max time kernel
32s
max time network
67s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
01/08/2023, 16:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Yandex.exe
Size

4.2MB
MD5

9c1f089e63a7795e61600713330783b3
SHA1

8ec4c99d5e0e487ef23d3a130f99f66ec6869557
SHA256

e147eabe55bc2f544641dd78f3fe2ecf4a8227c4e0e5c8bf1c5103f95417ebca
SHA512

3a9b7e372d8b5b128054d1ff4841296bebd73a851f0c8b77da5a4d39ecd8936041dbf3d58b238f63aa2ea7e0939b7ad64e7bfff90412297be133b958bc244f0b
SSDEEP

98304:T5wxWzZowQos6myn7WZPUsVigOKdzOJDb4v+:VSWFoCQPUV8wN0v+

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Loads dropped DLL 2 IoCs

pid	Process
1576	Yandex.exe
1576	Yandex.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1576	Yandex.exe

C:\Users\Admin\AppData\Local\Temp\Yandex.exe
"C:\Users\Admin\AppData\Local\Temp\Yandex.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:1576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
1KB

MD5
313cfbd75761d515780c60e28a3c5e6b

SHA1
c41fae66341739b5704df879330123e7838e82bf

SHA256
e0b6d85ea46bc26a1d36ce6b3119a4b6703cae2af56ed1a4b7f92395a06f53bd

SHA512
8d4601f7ba8a15843f9e84a5ce370f633341d347e4c43cf6884589a36f84824991eeaeafe5b300f32bb72e7a20e102afc85e2f5d85a8f2f381a1dd5616b47141

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
5KB

MD5
545ed2b3c80bbfb9990015bd23f933da

SHA1
59e7690932e88899aa4cb3f4b5631def6f2cde07

SHA256
ca8c94323fdc399c94d174e54ed9979ca98d3c3874fb89d2531993ac615c5a11

SHA512
9dac68e545b68f4f6a9897694cd8744446e653776c3c64fc43eb12f560232c355b9223464cb5ed685a2265888a0d7d12feed8a3f51a759cb715a0f4b7f8df0ff

Download Submit
C:\Users\Admin\AppData\Roaming\Yandex\ui

Filesize
38B

MD5
ea035b3bb6d31fbc43d968cb9fe0c2a6

SHA1
eb02ce1f4ee58334322e0caa6526b1062b35fb05

SHA256
16dd19028a70f22c2752e9d776c75e6cc99c0255e032d98189c13e77ef864a66

SHA512
37a62528913719c29e751da5268db1b1c13430b90835e21c89b889a094150663297ece1bfd0670fd974b55ae5606e2376c8c981ae72e60e93221c79f436fa687

Download Submit
\Users\Admin\AppData\Local\Temp\yb7E44.tmp

Filesize
134.7MB

MD5
ebfd481152d7831df783e7f2ea744159

SHA1
3bcbf1ebf900e6e8167eb441339f21425815019b

SHA256
1e96e7d0ec0ad269874e5ec728e6e20e028f3fad9e847d9d4923f54a6e36bf76

SHA512
267059849f5e81571f458a11332893b4581c1f60fa68fe73402b7e272f4abb096c1583d5ecc35b8b34e4fd412cb0818bea29c1a650099770dde9cb69fe87dbd2

Download Submit
\Users\Admin\AppData\Local\Temp\yb7E44.tmp

Filesize
134.7MB

MD5
ebfd481152d7831df783e7f2ea744159

SHA1
3bcbf1ebf900e6e8167eb441339f21425815019b

SHA256
1e96e7d0ec0ad269874e5ec728e6e20e028f3fad9e847d9d4923f54a6e36bf76

SHA512
267059849f5e81571f458a11332893b4581c1f60fa68fe73402b7e272f4abb096c1583d5ecc35b8b34e4fd412cb0818bea29c1a650099770dde9cb69fe87dbd2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads