Overview

overview

8

Static

static

3

5d92ae4594...e1.exe

windows7-x64

8

5d92ae4594...e1.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    139s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/09/2023, 01:23

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    5d92ae4594098f75b0f7f74afd42ce4ad7332b91f8cd5c5291be175e457f0fe1.exe

  • Size

    848KB

  • MD5

    c03cab94403e7e0838831a0a14017d5d

  • SHA1

    394c6fd57da4d60df494e4abf950d6bdd42b7db5

  • SHA256

    5d92ae4594098f75b0f7f74afd42ce4ad7332b91f8cd5c5291be175e457f0fe1

  • SHA512

    5222bf3844ef449152798f0c237f958549f473304bdaf6116e09af48d6f85d9480c203be323993d1eacf357ee97498a6ea0fe53702a1275fc744b5829d23616f

  • SSDEEP

    12288:wmtEbcT47Mt23l+f+9rcN5r1L/QaqyWPh897ZNytO9qyB2g5lbN4dIYpEF2XhYVi:wVbEGMQ3QfYraB0mCYhg

Score
8/10

Malware Config

Signatures

  • Drops file in Drivers directory 1 IoCs
  • Suspicious behavior: LoadsDriver 1 IoCs
  • Suspicious behavior: RenamesItself 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5d92ae4594098f75b0f7f74afd42ce4ad7332b91f8cd5c5291be175e457f0fe1.exe
    "C:\Users\Admin\AppData\Local\Temp\5d92ae4594098f75b0f7f74afd42ce4ad7332b91f8cd5c5291be175e457f0fe1.exe"
    1⤵
    • Drops file in Drivers directory
    • Suspicious behavior: RenamesItself
    • Suspicious use of SetWindowsHookEx
    PID:812

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads