Overview

overview

8

Static

static

3

d5297bcd34...d1.exe

windows7-x64

8

d5297bcd34...d1.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30-09-2023 21:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d5297bcd34c876cf7dd08a210908e10ff4958624f6a280bb970c72332ecae5d1.exe

  • Size

    4.6MB

  • MD5

    353bc6ee48805d3f7c389743c0dcf18f

  • SHA1

    b304702aa8e077e1ac33385a0efce3e037a954d6

  • SHA256

    d5297bcd34c876cf7dd08a210908e10ff4958624f6a280bb970c72332ecae5d1

  • SHA512

    d794dc932c4a16195287305a783ccd29ada925d56b575cbe8a78d7b45d3dfaf4af576a763a1c79b11ff6bc2258a9524cfb500e77ebec589d14405ef2c3ec2285

  • SSDEEP

    98304:IG1c5g+Wm3n0tzGoFrnoNspKdzOJDb4v+:UgjGoFrn4wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d5297bcd34c876cf7dd08a210908e10ff4958624f6a280bb970c72332ecae5d1.exe
    "C:\Users\Admin\AppData\Local\Temp\d5297bcd34c876cf7dd08a210908e10ff4958624f6a280bb970c72332ecae5d1.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    44db2362b73347de3078c509c7ccc69b

    SHA1

    bed08b1de4a93738c129876cab1b562d3e397c12

    SHA256

    dc495f5e8a0e08239f632de4a6c4ad693947cd48d094cbf9ab11d2f3091d395f

    SHA512

    a7baece00e92386715c4770c88e43a41c615a6129c1bcd9c4a1c532f87e1e5a028485a14c25e33b159a1f1d87a0e2341867546d31bac69ec03272f5f8dd7469e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    44db2362b73347de3078c509c7ccc69b

    SHA1

    bed08b1de4a93738c129876cab1b562d3e397c12

    SHA256

    dc495f5e8a0e08239f632de4a6c4ad693947cd48d094cbf9ab11d2f3091d395f

    SHA512

    a7baece00e92386715c4770c88e43a41c615a6129c1bcd9c4a1c532f87e1e5a028485a14c25e33b159a1f1d87a0e2341867546d31bac69ec03272f5f8dd7469e

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    d74be300ca5ffae97ad7986adc75a3ab

    SHA1

    4b31629947ab6f9698e9b84e422104a00a85794b

    SHA256

    008d0bcaba0b4a69477a185d934764af9f917f6dba66c3e5181b0c859e6fce43

    SHA512

    07ae2370f11b1fc9c9cabb80d9854120e3ef73b7a11dd8307eab6936fa84a34d8b2c06d05294c8727701fd7b03bb0f5bcb215207ab11541893918606fd6e7f5c

    Download Submit