Overview

overview

7

Static

static

3

6f2fb5c695...f3.exe

windows7-x64

7

6f2fb5c695...f3.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    147s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2023, 13:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6f2fb5c69597fb8b3bf1878bc578ceda467f4c84919c25a99766d9806babbcf3.exe

  • Size

    5.2MB

  • MD5

    dbfd8e5418c50a4e4be4fcce24056652

  • SHA1

    3a97348d8da4a90f5a5fac3ff80455b6ce8ad815

  • SHA256

    6f2fb5c69597fb8b3bf1878bc578ceda467f4c84919c25a99766d9806babbcf3

  • SHA512

    ccf8808841a44fe997a10fe482e215b732eea9f0645dd26e8041917cc3204a99391f445eec3d80a523b1a602ead98343bd2c279bd4b7676f627c1001476e3d19

  • SSDEEP

    49152:MQl4kfpIBwrmbaT2HoN3TKT9VJBff6lVEgHztu+thX44ifGJtSqeQLgza6BDm5Tq:5nfpIyrPCHoNqBwVzArOSqeDalc6dS

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6f2fb5c69597fb8b3bf1878bc578ceda467f4c84919c25a99766d9806babbcf3.exe
    "C:\Users\Admin\AppData\Local\Temp\6f2fb5c69597fb8b3bf1878bc578ceda467f4c84919c25a99766d9806babbcf3.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:3444

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\E2EECore.2.7.2.dll
          Filesize

          8.4MB

          MD5

          8b6c94bbdbfb213e94a5dcb4fac28ce3

          SHA1

          b56102ca4f03556f387f8b30e2b404efabe0cb65

          SHA256

          982a177924762f270b36fe34c7d6847392b48ae53151dc2011078dceef487a53

          SHA512

          9d6d63b5d8cf7a978d7e91126d7a343c2f7acd00022da9d692f63e50835fdd84a59a93328564f10622f2b1f6adfd7febdd98b8ddb294d0754ed45cc9c165d25a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\iext1.fnr.bbs.125.la
          Filesize

          724KB

          MD5

          3bfaf1bf16857d3302e802ca41643e22

          SHA1

          c8a72c1ce1e727d72aabb80ceb2a205b0d8707d4

          SHA256

          a9c5970422aa08a8f8d0cefe9ab69d81cdef48fbfb8df29f1aedadd0a6390a00

          SHA512

          62f15479677c7c1107381a4fad04a800066a799664a0553e142cd19d63a420b4012cc5fa0c8f90f363f28f4d13981b79a368068417f2bb4e911665931247d523

          Download Submit