00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559

Analysis

max time kernel
126s
max time network
166s
platform
windows7_x64
resource
win7-20230831-en
resource tags

arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
submitted
11/10/2023, 23:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559.exe
Size

4.6MB
MD5

81bd760725af8d1b8251d89e6cd42e9a
SHA1

350a8d6be0624076eb7320601a043b62d3c8f44c
SHA256

00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559
SHA512

96c60bd18be5513c13b88f342a6426c648ba75cdefdfd78bc12d3ef9454d00324f1ba7086bdbf9431bb99cf5085ec2e6ea05a51935b06d44eea938cfecaaba1d
SSDEEP

98304:fcOxoa2orK2t+Gwo2xaWJWRzSKdzOJDb4v+:Tos2oWJWRzxwN0v+

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Loads dropped DLL 2 IoCs

pid	Process
2052	00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559.exe
2052	00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2052	00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559.exe

C:\Users\Admin\AppData\Local\Temp\00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559.exe
"C:\Users\Admin\AppData\Local\Temp\00f96fc974cf24b1cc959d71942b5028bfbbc64107bb12e5f87f54edf0c25559.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:2052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\CabC247.tmp

Filesize
61KB

MD5
f3441b8572aae8801c04f3060b550443

SHA1
4ef0a35436125d6821831ef36c28ffaf196cda15

SHA256
6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

SHA512
5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
3KB

MD5
b0251ebfc2c4a6c950cc3af08f150ff1

SHA1
2c11f2e9097aa1ed209422652e9ebc050a46eb52

SHA256
693232c90e8f6ce80de4755d97f7b1e621d53e9c0a7976cc1dec59a0a55dbe34

SHA512
f99f3541d19c1e095a8ee4a1151230aad5b40fdaa510444a2a416c630b985ddd5da0126f3b51059e62fb05d5a597b53d3225561c1cb5ba2f44a24c426c242303

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
7KB

MD5
275d3b4d6ae03e92458b67d65f0c098e

SHA1
603f92b0a2dca15c7e840917e4f5d1fb98446eec

SHA256
b51f8e207fe7cc448a2b94458274db16915e6243a83048a03fb7b56c6a9f8e17

SHA512
ba42cca8ea538e0e64ebaaa70c5e6ad9cb70730bde854ead5b38fc883de6e23ed3abbafd40e8bbf3af0a99f82738bc6c736b1afd643fa524e3c03e585199f1bc

Download Submit
C:\Users\Admin\AppData\Roaming\Yandex\ui

Filesize
38B

MD5
fbc8dde1330adca363d1ebeeb2b6f2ac

SHA1
698f25e2408bb6d74d6c53d7b406746ebe22538e

SHA256
43b3fe6555284b6d12e5d7425c875c270903718ada0ff3c52389aa14ac67f793

SHA512
35f02f17d2e18ea8b0e2075c2f129ad395cc65fc3ba461b5a949d62c5ba5efb2cc2404982bc5f36e4e7cb7846dc3b843c7816d943ff5b354e01a7db73de7bca7

Download Submit
\Users\Admin\AppData\Local\Temp\yb387E.tmp

Filesize
143.1MB

MD5
036b2f7390449bf5e629e6b971341322

SHA1
e18a2c46baafa9d42a976e4e7113bb6674cfb5d3

SHA256
37bd0d324c8b6d88c2ceb9d134af62d8142bab4189402767429e325801bc79dd

SHA512
75639c212f834d6c7a527706e9567ceea4e00dd080f21bc97cfd5e9e7ae7fff097c47f653023db50eb550779f3f8ce069fb4df7435780b58493cc75fb0fc8887

Download Submit
\Users\Admin\AppData\Local\Temp\yb387E.tmp

Filesize
143.1MB

MD5
036b2f7390449bf5e629e6b971341322

SHA1
e18a2c46baafa9d42a976e4e7113bb6674cfb5d3

SHA256
37bd0d324c8b6d88c2ceb9d134af62d8142bab4189402767429e325801bc79dd

SHA512
75639c212f834d6c7a527706e9567ceea4e00dd080f21bc97cfd5e9e7ae7fff097c47f653023db50eb550779f3f8ce069fb4df7435780b58493cc75fb0fc8887

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads