Overview

overview

8

Static

static

3

7e70e446f3...fd.exe

windows7-x64

8

7e70e446f3...fd.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    139s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2023, 12:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7e70e446f3b48f4766f4376ee366984b01b78a025ba65c19b164b8398b5638fd.exe

  • Size

    4.0MB

  • MD5

    d32e8632eae0ec6c4373d115ff3025ae

  • SHA1

    5351a72bca3ed786461b49592c02c6d54524d76a

  • SHA256

    7e70e446f3b48f4766f4376ee366984b01b78a025ba65c19b164b8398b5638fd

  • SHA512

    5d03c747ac2ba196121d7867d46cc4b46876932402f221cd7f9b953faa29eeba80cf2e52113a41e28f26c48ca6227a917e44049e0601f731e70d5dbf96bdf84e

  • SSDEEP

    49152:40N3IpkodZfdlTXKnB3nZdXarY+r5u8QeKxFOJxdb4vZKV:Z3IfZfdJXKB3nZd+KdzOJDb4v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7e70e446f3b48f4766f4376ee366984b01b78a025ba65c19b164b8398b5638fd.exe
    "C:\Users\Admin\AppData\Local\Temp\7e70e446f3b48f4766f4376ee366984b01b78a025ba65c19b164b8398b5638fd.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    0714189ce575a53b6a9586e0293ca835

    SHA1

    d59da17c29a409ddd5fa4974d381bf6100ae3416

    SHA256

    9477f5030a5285a30a830f96ba5a4bb8ade87c7bfa50da2e14f50406663a6a22

    SHA512

    a2af17d345cd895ae69c7c68d851d618653f62f99f7d2230536f15e86e5c30c01cf7175348f13022adf5e0d08ccf56e2aadda7da2538e87b736027138ed09171

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    08dd5c6bc8190bad2d2b8a15e1cfd94a

    SHA1

    8fdf2b2d9b4d6f77c3de0ba680a1637a306c4db5

    SHA256

    8f5acc3205ba39cef2498084ddc96bf6c64e0e7a69da92850c899173bfc17a92

    SHA512

    2c044149c7929d6f36fa61e6cab18b7be54b76d9f610baf546a70d8321200a051a58e3810a0bba62cac598e6babe5ff94d14761c957b9aad24d6b72697c64093

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    e26698d7af4a4b46c45a5b77c666fec5

    SHA1

    934ecf2a148cd69d91afd755b7de382f683c5cc5

    SHA256

    80360f06f45b34c2786406415ae969d1fd39c96f4f4662657ed59761b07a8a88

    SHA512

    23d70937979e3971914e5d93bfea20afb23e03a7c73a61d40dcf894ce3d3238bfe508523357c84fdd066abba391f8a5084b70e19be84a0812ab176d59862b2e1

    Download Submit