Overview

overview

8

Static

static

3

870128fd4e...3c.exe

windows7-x64

8

870128fd4e...3c.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    146s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-10-2023 15:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    870128fd4ee1b160c4c62024dd1ccf5ac379eb07ff377f62f24ce1b31d02b63c.exe

  • Size

    4.6MB

  • MD5

    595b1b0f4b5e4f4acf2ac978332e7e2e

  • SHA1

    c2cda4b6d6b637e1e8b465c862d06bcd36bd47ac

  • SHA256

    870128fd4ee1b160c4c62024dd1ccf5ac379eb07ff377f62f24ce1b31d02b63c

  • SHA512

    ad16b2d0cf4db9dc0595725e889b868f04e62dc3e76521f8ccfbe0d7d13cd3035078ef14d5b11b34bfd81c276604ef47facdf2cb6cf61919d95aba37df1621c8

  • SSDEEP

    98304:6aVizMvkMUg3n5xmtDasmlKdzOJDb4v+:+MsR39wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\870128fd4ee1b160c4c62024dd1ccf5ac379eb07ff377f62f24ce1b31d02b63c.exe
    "C:\Users\Admin\AppData\Local\Temp\870128fd4ee1b160c4c62024dd1ccf5ac379eb07ff377f62f24ce1b31d02b63c.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    bf3aee8426f9457143576dff5e4568d2

    SHA1

    8efbfc927c88241e02759c473a661d54384fed44

    SHA256

    994d6fa0ee4baa0dc0271257d2dbe0028f218f86d40718850b6addd9f5484856

    SHA512

    4aa062e82bf3f32ba57a4187bb6320b4bd5ad48a311bb8270a9e2334b149d80f1c0a97949462c53c314eee3cc655f21262e1e05211868adfdd4194b8ef66a5b5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    2efc9dfc40a6021bccb9f1f87ba0c27c

    SHA1

    c72b49a6c81a4c8bce1b4bf0a2d298fa86d98186

    SHA256

    81a7513a8c0ccbce53180bed3b515864809f73f95b6fdbf1c100198d70e8bd62

    SHA512

    c448bd34cc8ea71112d4a33f3004699e260eee766d2b3ac3894e118a753e882118f0c117bb111fb388d44bc59f169eebb086f2c9218f30ead477743387bec183

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    62049c2aff68e4fea9fe04e5e4ea0114

    SHA1

    3e2ad5c97adc5be2b5c1d974fd41a310ad1ff63f

    SHA256

    6197e99d9ec44d75f777635df9d782f0e09fe132fcb3cf924d47fc051d914242

    SHA512

    1d5cfebc40e562da5cd2fb6b64abbc1b576e54e8a64caff444ac745fed9bb7831d0b95e015e37aa555f18a83165d32ccd60ffdc653e3e0c379fd4c607d3899ab

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    0d313109b339dc72bded46ac4d6e466f

    SHA1

    92cefbe1dd7dc5e7fb79215d90fbf62785ce1874

    SHA256

    c142c9c6b12a2521381b0410b76e4eefadfd1ea05c5517039c99290daffcaccb

    SHA512

    0479ea4d3c1fc3731dfd45f354f824e7bf01232302765ac3d3e95b6e11fcff16f1a77f16e0a350a0a402feaacd9a38239c0cd6e780c49757a8a67d6ef371dab1

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    92e24d2cb7732929826afb9b7acb7e80

    SHA1

    1e68946d9c283dff82bbb2c78269e93c16c907ad

    SHA256

    5177078650bd47a7c5c04308308fec46c8d99e75b6672ffad9f62ca887dd13a8

    SHA512

    e30fabdf754848942ef215ad90923fad7328be131f934e266f9f240baa301f57c20aa8bf51773b5a94354521fa655ee0358e1ac285faf60c432c5173eda59ba5

    Download Submit