Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07/08/2023, 09:59

General

  • Target

    6f575b1d9f7f25473a8d79aebd7847aa03824f750b3c729c6a053d2a2fad88c0.exe

  • Size

    199KB

  • MD5

    71e8c4d0b30fbf51031979f660e3fc3f

  • SHA1

    60b8a7fbc25c23a08cdd3e0a638723be72bfd650

  • SHA256

    6f575b1d9f7f25473a8d79aebd7847aa03824f750b3c729c6a053d2a2fad88c0

  • SHA512

    c476ccc66a058dc2534390f827a8a1c86b00192d5c0c6b4180e5ff70579ce637ba75c8cdcde1e3453029773dcdc69af1ffe913e976538b2be5942eb7e316644d

  • SSDEEP

    1536:NChGrDdHUSdY44HwqrmK/DeXiIVdHPP2TP2aCP2aztEZZ:2w0SdY4rqrmMeXiuNIZ

Score
10/10

Malware Config

Signatures

  • Guloader,Cloudeye

    A shellcode based downloader first seen in 2020.

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6f575b1d9f7f25473a8d79aebd7847aa03824f750b3c729c6a053d2a2fad88c0.exe
    "C:\Users\Admin\AppData\Local\Temp\6f575b1d9f7f25473a8d79aebd7847aa03824f750b3c729c6a053d2a2fad88c0.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2136

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2136-56-0x0000000000290000-0x00000000002B9000-memory.dmp

          Filesize

          164KB

        • memory/2136-57-0x0000000000290000-0x00000000002B9000-memory.dmp

          Filesize

          164KB