Overview

overview

8

Static

static

3

6155e59582...b3.exe

windows7-x64

8

6155e59582...b3.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    143s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230831-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230831-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/09/2023, 10:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6155e59582d33a23a3df791c1e5c35d9ade1b4f006e9ec1aec699c80a64610b3.exe

  • Size

    4.5MB

  • MD5

    6da1a5c677fa25a8fe752d17b31ec841

  • SHA1

    e6f14668494e72df174cd490b90bc7ede94bcbe1

  • SHA256

    6155e59582d33a23a3df791c1e5c35d9ade1b4f006e9ec1aec699c80a64610b3

  • SHA512

    16987dfa6fcd3bb6f06cb164a05178fd2a0c00613246bd8fc407c02311ffba490a7d93c32173a60b77ead245ed1a14e122e07d2f359184c1b837bf38111d5c84

  • SSDEEP

    98304:B9xEpja9gwFK2JcwtTwPAHqx+gKdzOJDb4v+:6p3tawN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6155e59582d33a23a3df791c1e5c35d9ade1b4f006e9ec1aec699c80a64610b3.exe
    "C:\Users\Admin\AppData\Local\Temp\6155e59582d33a23a3df791c1e5c35d9ade1b4f006e9ec1aec699c80a64610b3.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    25bafd254e4e04a180f1dab944ac869e

    SHA1

    3221112d103a95f7d1e9f35b30d028731926535f

    SHA256

    391d3bd4667bb9aeaa29bfd9eeb39e54e1c2b6c51612996e1f54054a6e0f67c5

    SHA512

    11c7583ddf2b0ed8ecb69b574b124d7534e27203fb8c83b96d73e68646aac6b103513f2cc7f4a19afb7f8187e1363e9825b9be35f509823b8c72b29bf1d9578b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    f9ad89f78aa680942a8967409fc3f93b

    SHA1

    865420ac06ad43d7ca20ab01e4a457008e2704cd

    SHA256

    c6c71587e6e7d339154a952eba10aebb9b8f5b1c7f68a7f1753dd5a2947560c6

    SHA512

    7311850ffb2eecb9c7da827f7177318408826a8db504c301c21b5a05037a0e5fcac1ca8496199e13edcaa9b004f40320bc4daf122969c105bd619c68c3a235a4

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    a38528c5a0d68e20795bcd342ea0a83c

    SHA1

    c8f9cf3ffe30c4141f95ddccd185647579094bb0

    SHA256

    2e56ea06c7557651be03f18aae4aebcedc38023e65c04d78294e47bd45e838e5

    SHA512

    28ec4e68c56f583f924f9a133ac274a4163a389bacbef9e46e0fa59d77c3f0d24d99d656a3abde868b5d9f71b6b040d423ba18ee4fbfef119a018ead189b6901

    Download Submit