Overview

overview

8

Static

static

3

99ad141075...37.exe

windows7-x64

8

99ad141075...37.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08-10-2023 08:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    99ad1410750061c3a1b30a8c39c7ea5ee8c136af7dfa46f4f82acf92ee4d5d37.exe

  • Size

    4.6MB

  • MD5

    99ec81fb03ee7a0e2983c42134a4f724

  • SHA1

    e8b6da15a735c23ad9f3dbac8b9a93cc3b6ac0f6

  • SHA256

    99ad1410750061c3a1b30a8c39c7ea5ee8c136af7dfa46f4f82acf92ee4d5d37

  • SHA512

    efcc644e94cedee3605e356e4ace94170b4b003e0e2284ef59c05f37c968a0d3faa7def273178afe4dc5b6c3e212870d36b8d9c54772639b1c657dc5232131b0

  • SSDEEP

    98304:IG1c5g+Wm3n0tzGoFrnoNspKdzOJDb4v+:UgjGoFrn4wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Loads dropped DLL 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\99ad1410750061c3a1b30a8c39c7ea5ee8c136af7dfa46f4f82acf92ee4d5d37.exe
    "C:\Users\Admin\AppData\Local\Temp\99ad1410750061c3a1b30a8c39c7ea5ee8c136af7dfa46f4f82acf92ee4d5d37.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\CabB196.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    fc5f01b8fd2335d6e2b652725267555e

    SHA1

    c47c9a5da0a913e7c3116f48c62fb597c3dba788

    SHA256

    820bad4d948c016bd82220c25f4a0aad7af74cd887bbc91e33b5802b1b62f86c

    SHA512

    77136356d5c4b6e6e1eaa3da8557932bf40de9c534bdcbeb51e245f68f3e7122bc464799b305199eacc05d9140fe05c945d5a303fea4e5649ae7664b9231306e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    2KB

    MD5

    1eabbbc51af18ea650ec59e9a4b0555b

    SHA1

    e92b7564dbb2cf78dd6bca2408c43999e47b8955

    SHA256

    12ad55359d64e610b6522ea1a51dccb86efdb4226cc7d417149a3f011edbe638

    SHA512

    6a1042ae8262d285214b201225c1188896d4c47333f64c469d9f96fc1abeec6e730ae7d221d53dc44add7c360d7a74a938c1bda9b6ff0e87c88008d3836c18f4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    8KB

    MD5

    8949d559d7caddb1b79d9ec505275481

    SHA1

    a89e5a10da922abfef6856b5ded04921904f7ce2

    SHA256

    3818d9026abb7ccc53a85c2c70555debc626b147f2079768ab881860d6c7e147

    SHA512

    6d0112e89c02c26920aac3c6f47a35e0bc82bc716307253bb035ea8fdb2618b4517883b270a17827bd9ed3ff7859751c70c39aa2d1296b9283db43829541022e

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    e7f2ccab4434d5b0f0878da4a4cf39f4

    SHA1

    21e09ee84932a583cef5ea261293693001a41cf9

    SHA256

    90191b8917e8b121869b6ba5680173c22faa03469302e47373ec4415df1e32a7

    SHA512

    6466dfec995f3056b428dd68ba69c699978a42fa511198294b26da798df82aff65784245dd7306129d2f5aa869fa5558d7e4af33ad01f969536619af89cf669c

    Download Submit

  • \Users\Admin\AppData\Local\Temp\ybAD01.tmp
    Filesize

    140.4MB

    MD5

    4cb143fdad968165c2dbe48ba8950bb1

    SHA1

    cb0faa0650fba759a596663382cc6692dd8a727a

    SHA256

    4daab0bcf0af280b939c6b52df6d7b98bdad5d062b65fc4318e44f948f43103c

    SHA512

    a6613467737f9ad3a554a97e71053451eac5ba966550708b77b4b1ae1a0c1aab1845ff94563701a1ff1cad27cfef59d8f733838871d139c4599ae72a104ea821

    Download Submit

  • \Users\Admin\AppData\Local\Temp\ybAD01.tmp
    Filesize

    140.4MB

    MD5

    4cb143fdad968165c2dbe48ba8950bb1

    SHA1

    cb0faa0650fba759a596663382cc6692dd8a727a

    SHA256

    4daab0bcf0af280b939c6b52df6d7b98bdad5d062b65fc4318e44f948f43103c

    SHA512

    a6613467737f9ad3a554a97e71053451eac5ba966550708b77b4b1ae1a0c1aab1845ff94563701a1ff1cad27cfef59d8f733838871d139c4599ae72a104ea821

    Download Submit