Overview

overview

8

Static

static

3

2bf9734160...f5.exe

windows7-x64

8

2bf9734160...f5.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    149s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2023, 10:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2bf9734160c5f6f3161e00af5e75789e14d96a1a5916b8520b8bf72594d408f5.exe

  • Size

    4.0MB

  • MD5

    e2a98b50379c6d2aa54e6d529b32a78a

  • SHA1

    fab5de0ccac35cb167ca256e3e035d9e41f18fc5

  • SHA256

    2bf9734160c5f6f3161e00af5e75789e14d96a1a5916b8520b8bf72594d408f5

  • SHA512

    3095c18d9956467184e00df88c5de42e7c06e6bd11a3cb4efa7b38307bbe5f710969dd20b72285da18062bd12afaa2467d8d971a123848024fbf6b2907f04e21

  • SSDEEP

    49152:40N3IpkodZfdlTXKnB3nZdXarY+r5u8QeKxFOJxdb4vZKV:Z3IfZfdJXKB3nZd+KdzOJDb4v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2bf9734160c5f6f3161e00af5e75789e14d96a1a5916b8520b8bf72594d408f5.exe
    "C:\Users\Admin\AppData\Local\Temp\2bf9734160c5f6f3161e00af5e75789e14d96a1a5916b8520b8bf72594d408f5.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1820

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    dbd5a8d30f424ca20300ff28225f8048

    SHA1

    17105ec1af71fbeda83c330488e856324fb786be

    SHA256

    6064fd94c8f1f3d79ec337695a3bd22509654d5693702d327e2509e65377c8de

    SHA512

    7c0968dc8820771a67199b796d778b09b142e314d2ceea60b27af99e1c9649512666892b39dcbfe334966480158971fbcb98401ae43c48605a474d0c6ef1d924

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    7579dfd45136ad06bc9eaf2458f3ac9d

    SHA1

    f91845ff88fe052e6d57bbff8fa1aa03127e5b2d

    SHA256

    f129330b450d58cc0bb6862957c02bf23cc484acb7babb11d6f7cddf14f60701

    SHA512

    82c32e226f30f03e6999fd026c3b326f645659c2e537f6b916152471b01d7a7a63854b4bb3d637da1638d2286ffd345908d8a997285abeeb0695e431a1bf08f2

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    212bfd610fca6c216fe92ac17a9a7355

    SHA1

    9767252c3e0b18c3543749d43415a19a64fb4ab9

    SHA256

    ececb7cb505bdfd91a61b7d835a0562a63b5f277b66fad570213be7bfae43ccb

    SHA512

    9fc159d00c16762316cc496caf1eb20a174597e710ae30f3c5be8c4c2f108ba0a1deb339a715f83205b2c487f0164373212d6aea0ec1fecb12f9974410964761

    Download Submit