Overview

overview

5

Static

static

3

2c238cebb2...82.exe

windows7-x64

5

2c238cebb2...82.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    150s
  • max time network
    163s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08-10-2023 06:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2c238cebb26e6aeff3f751dbc0b9cc40fe9d681aa1223f7d73e6549a5be33e82.exe

  • Size

    7.4MB

  • MD5

    b8132606eadf4d5542d0db2c38867939

  • SHA1

    a0738499e14b2296f098201a85c8470dc8420b94

  • SHA256

    2c238cebb26e6aeff3f751dbc0b9cc40fe9d681aa1223f7d73e6549a5be33e82

  • SHA512

    de804665a4fed03361911869527dcde9b8d8d0026ef8f74036acd235864f1e00de9b3f11241daae9b488d3faa3acd5fc7b4a751a8b769e979917c6bde3a6f4aa

  • SSDEEP

    98304:5u+ebyc6LBC2N1AAZpMzmnqM3bitwMLhZ+NfHwhGfYhSfe374I1Ls:pdmephqoChLWwh5Sm3Un

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 64 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2c238cebb26e6aeff3f751dbc0b9cc40fe9d681aa1223f7d73e6549a5be33e82.exe
    "C:\Users\Admin\AppData\Local\Temp\2c238cebb26e6aeff3f751dbc0b9cc40fe9d681aa1223f7d73e6549a5be33e82.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:2468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2468-0-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download

  • memory/2468-1-0x0000000075310000-0x0000000075357000-memory.dmp

    Filesize

    284KB

    Download

  • memory/2468-812-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-811-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-814-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-816-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-818-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-820-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-822-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-824-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-826-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-828-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-830-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-832-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-834-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-836-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-838-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-840-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-844-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-842-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-846-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-848-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-850-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-852-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-854-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-856-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-858-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-860-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-862-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-864-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-866-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-868-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-870-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-872-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-2547-0x0000000002A20000-0x0000000002BA1000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2468-8686-0x0000000002BB0000-0x0000000002CC1000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-8691-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download

  • memory/2468-8696-0x00000000003A0000-0x00000000003C2000-memory.dmp

    Filesize

    136KB

    Download

  • memory/2468-8697-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download

  • memory/2468-8698-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download

  • memory/2468-8699-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download

  • memory/2468-8701-0x00000000003E0000-0x00000000003F4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/2468-8700-0x0000000075FB0000-0x00000000760C0000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-8703-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download

  • memory/2468-8704-0x0000000075FB0000-0x00000000760C0000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2468-8707-0x0000000000400000-0x0000000000D56000-memory.dmp

    Filesize

    9.3MB

    Download