Overview

overview

6

Static

static

3

52097d8f64...45.exe

windows7-x64

6

52097d8f64...45.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2023 10:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    52097d8f641b3d9b30704a21a646acd1a8c222fb64ff223d545133cbaec82045.exe

  • Size

    5.0MB

  • MD5

    6870a642eb2bdaf9ec94d2631b308613

  • SHA1

    7de29f8f22067452c0cc60ee6d67e44809c9ac5a

  • SHA256

    52097d8f641b3d9b30704a21a646acd1a8c222fb64ff223d545133cbaec82045

  • SHA512

    cf9dd92fbee7ebe198f115d1c527f1f6e94008a9a4b951237fd60dd2fe2f7a42d503df96187b58f04141b010d758ef1ed2fc16e47b5242f2456ba517306fc465

  • SSDEEP

    98304:TX+opBMro2XirAFBqB92ut2pAf6ydMwseGqel4wqZqg9PmLn25mVqZDPujoZ1kvf:TX+opBMroaQAFBqB92ut2p5ydMwZGqeX

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\52097d8f641b3d9b30704a21a646acd1a8c222fb64ff223d545133cbaec82045.exe
    "C:\Users\Admin\AppData\Local\Temp\52097d8f641b3d9b30704a21a646acd1a8c222fb64ff223d545133cbaec82045.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:3004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads