Overview

overview

8

Static

static

3

18e6585aa6...5d.exe

windows7-x64

8

18e6585aa6...5d.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    143s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/09/2023, 12:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    18e6585aa654d1c36c8eb3380f4176e313bd03a101bb622f8d55aedd8d38f15d.exe

  • Size

    4.6MB

  • MD5

    8ff9e579dd2829630eab3be3ae9b965d

  • SHA1

    7d8558c3f8dcf9be6ab596725541c23dbd9e5119

  • SHA256

    18e6585aa654d1c36c8eb3380f4176e313bd03a101bb622f8d55aedd8d38f15d

  • SHA512

    6c243aea8dcd1a6120bdf7b4cce70ebba610b546f4c1c525aa23f4894cdd579a90869723aa65a99bea85cf9c2b0e695ade63b777d300e0fb7b2b7b7fd1618d41

  • SSDEEP

    98304:fcOxoa2orK2t+Gwo2xaWJWRzSKdzOJDb4v+:Tos2oWJWRzxwN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\18e6585aa654d1c36c8eb3380f4176e313bd03a101bb622f8d55aedd8d38f15d.exe
    "C:\Users\Admin\AppData\Local\Temp\18e6585aa654d1c36c8eb3380f4176e313bd03a101bb622f8d55aedd8d38f15d.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    45e0224c30ca844d8edff7320f3fc2eb

    SHA1

    56606d864c19bd004572ff8e60fdac645f83fb27

    SHA256

    0e3170838197489226fb14e885a8b4d28ebd6c3a1bf571d35395a4395f365dea

    SHA512

    5cece7e521e711c89f727b477041305a3a157c86fc7f52d5779d25b5c2ca8d51e231b4094a569ee73d72d2a82e256d9fa82be1949fcb7cb697a4c9fea4a9a194

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    d720f5be35240632b244c499e92a7000

    SHA1

    68a85e78edb8878dac676925b600f3f5decabc32

    SHA256

    3cd0d78f0b286ba10600606fa007db4e7bc8375be55c4e1b0d0760c29c448a6f

    SHA512

    79a1b7b178a19d23261699346d15217174913d09c437def76afc403bc7cc6863052ed40f86ca44c4324495daedeabaf6448b30159d29b9915507272bad43b1d9

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    9b82fdaf13b89339a463e0ae40435114

    SHA1

    5c2c0319eed94c3ff22886cf20bc61de3221678a

    SHA256

    65c68302817df92aae7ec92a4d79fef0ea092dbcc99afb7216f2e5b77f180cbe

    SHA512

    46530a144550ebf3c0503079769ad1765bff2b35c492a2b77e26a52565fb22fe61776b96fbe275ed1f001d8a80dc4566483b19f658e3a2d2ac41fb345371279c

    Download Submit