Overview

overview

3

Static

static

3

4ff4a873d6...50.exe

windows7-x64

1

4ff4a873d6...50.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    21-09-2023 01:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ff4a873d683222b2fef247c255359df44ab05c9f418d47761935fd58624d450.exe

  • Size

    8.4MB

  • MD5

    a503a0a5932682153aa2827d927f3a3e

  • SHA1

    60fe665438155e1292a136a30ad9e03dbc43fa72

  • SHA256

    4ff4a873d683222b2fef247c255359df44ab05c9f418d47761935fd58624d450

  • SHA512

    66cda392050192c4037a89fe44e9ea71e7d8acb43c496ba40c6c206d8e9c4ed3c0aa2634b0c5076971d7ec1dd4f59cf6fd5470c00b1971c06c0f4f0398f496b1

  • SSDEEP

    196608:lbAvCOlrSFyiAa4/+uhiiIAnIEU+bHsEfRQWC4u3SrkLd:1AHCjehrIxl+bHsEqWoSIB

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4ff4a873d683222b2fef247c255359df44ab05c9f418d47761935fd58624d450.exe
    "C:\Users\Admin\AppData\Local\Temp\4ff4a873d683222b2fef247c255359df44ab05c9f418d47761935fd58624d450.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:532

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\4ff4a873d683222b2fef247c255359df44ab05c9f418d47761935fd58624d450.exepack.tmp
    Filesize

    2KB

    MD5

    7bb3cd2db97c7e17f5de801b02391fec

    SHA1

    12e0d928b1ff2766449dea56e9b82ae1e840e94d

    SHA256

    4ba7e4cd9af1e726b13a2b2a707aa9c7e5a5857797717945cfa69efca02e4bfb

    SHA512

    2bad857275140e9a1f25fd6ee547fb83da38552ef3c0e7a3cc922628af2035a0663e8a9186ec250919eddbce564c26402599141060c18f85e7f455e6ae8be4ed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\691bfd7d1818c10b7c2275de687a3fb5.ini
    Filesize

    1KB

    MD5

    cef56cc6d812d0517e2e0f903ed2ddc8

    SHA1

    a27570045a8da3bf9f60843f522aa14879e90fc7

    SHA256

    f76a976fd98ed0ea01de547952049c4c270205652bb77e208b76e785de56520e

    SHA512

    b3f8d2abaffddc296a0bd4a2ba3ed95e5483f1772a5580ddac3600a3381b50760495d472eee1a50290cada722100d4e7969ba7ba15dbc98bc464f8a0338f9fa4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\691bfd7d1818c10b7c2275de687a3fb5A.ini
    Filesize

    1KB

    MD5

    ed03bb14766efae019dd793b1e6d03e1

    SHA1

    9e9e6520ef0fca947927f3eef5c5d8039ef23c5f

    SHA256

    c145897d21b90d0d55d15b34c26903f8cde2998906d50f91ddaea7c40e5ed457

    SHA512

    6f8a6f556b88b2af84677c80fc871502b1e7faee81706d67fe9d23dc8d28ead9f86058d95285759a438f969ab4520a319676b439164cb7fe5f5cdb7c6e15495e

    Download Submit

  • memory/532-340-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-342-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-1-0x0000000000250000-0x0000000000253000-memory.dmp

    Filesize

    12KB

    Download

  • memory/532-336-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-337-0x0000000000250000-0x0000000000253000-memory.dmp

    Filesize

    12KB

    Download

  • memory/532-338-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-339-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-0-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-341-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-2-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-343-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-344-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-345-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-346-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-347-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-348-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-349-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/532-350-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download