Overview

overview

6

Static

static

3

3a9fa45c68...42.exe

windows7-x64

6

3a9fa45c68...42.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/08/2023, 00:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3a9fa45c68e275082f8e4b10cc15e07e01409e195423579a8071d3cd7984b342.exe

  • Size

    36KB

  • MD5

    a3ba6e4ffb5641b7e03299433ed50d46

  • SHA1

    68ccbd46707443b4f7ff5c750c6a0aab2f16ee10

  • SHA256

    3a9fa45c68e275082f8e4b10cc15e07e01409e195423579a8071d3cd7984b342

  • SHA512

    8c536a6c9a42e86a343709adb393171eeb615b6ce650dc68ba9f0d283ae2de3e024cb62f8542e222dc29a81b5aa3d7e73cf1c703dfb8ec450dd7290e3032eadb

  • SSDEEP

    384:i+47YFzTxIx1w/jpHowi/xCZhP5xMnIEhGPRUl/:i+47Y/IxOlH3i/xCXo9ueJ

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3a9fa45c68e275082f8e4b10cc15e07e01409e195423579a8071d3cd7984b342.exe
    "C:\Users\Admin\AppData\Local\Temp\3a9fa45c68e275082f8e4b10cc15e07e01409e195423579a8071d3cd7984b342.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:536

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\ProgramData\set.txt
    Filesize

    48B

    MD5

    0c643629b6659a5d9b751c9310906167

    SHA1

    d151a276b8249651a4020b4d3fe85793c57a8f78

    SHA256

    6f1212c06d8a63aaec113460b5d8b06956c98517bda26cd707bd5ba41e2f4ad4

    SHA512

    be36d937e826747c5910b8f38797527baeb19da4a2b86736e5f249e3172c3e6412795674a82ba8e29835b85f6a5fcbd90baf3f3220030cfed3a42caa53a1d1ac

    Download Submit