453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c

Analysis

max time kernel
162s
max time network
229s
platform
windows7_x64
resource
win7-20230831-en
resource tags

arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
submitted
13/10/2023, 10:05

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe
Size

9.4MB
MD5

548b855ef81d33dc7512c55e0b6cbc69
SHA1

e62398f75b5c2748127484b698d5420c4d76a732
SHA256

453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c
SHA512

5ff8f5c92f3d0cfce1fe9a369bd25cda11566602ca0889c49c88704b5c21c5664073469696ee0db89a1b4a8c31ca60f734fd78927e36af722803363a94c37a17
SSDEEP

196608:BHRkkQaf+Hm2r+TdfOzVoqTLo8+ZPJjkzVo:Be+fT2r+TZ4tT88YO

Score

1^/10

Malware Config

Signatures

Enumerates system info in registry 2 TTPs 2 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardProduct	453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2032	453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe
2032	453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe

C:\Users\Admin\AppData\Local\Temp\453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe
"C:\Users\Admin\AppData\Local\Temp\453925221997e1b2ca364b1f56d169af650ddd8dc7296023754895f5a4a9032c.exe"
1⤵
- Enumerates system info in registry
- Suspicious use of SetWindowsHookEx
PID:2032

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads