Overview

overview

8

Static

static

3

27586c74b2...f9.exe

windows7-x64

8

27586c74b2...f9.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    139s
  • max time network
    145s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/10/2023, 11:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    27586c74b21a37d4c7fb0641271cba330fc71d4b8826632a291f98cd34f668f9.exe

  • Size

    4.0MB

  • MD5

    38015e6ae72cf7294a6b32022fbff20b

  • SHA1

    61add9f07cb89d4810fc4772da0b2c458d01ee95

  • SHA256

    27586c74b21a37d4c7fb0641271cba330fc71d4b8826632a291f98cd34f668f9

  • SHA512

    c8fdb9b4cc054cfadee3470a221367035b9591d1a22a2a3577d5034fbe3e2722a9c8b1876a7b55cc7d91db6e4190bcc7869d7b2c561f5ccd82a77a5b41c950f3

  • SSDEEP

    49152:lv4THDVBJQWLz53ncPlXO3doY+r5u8QeKxFOJxdb4vZKV:V4TjVBOWLl3ncPS2KdzOJDb4v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\27586c74b21a37d4c7fb0641271cba330fc71d4b8826632a291f98cd34f668f9.exe
    "C:\Users\Admin\AppData\Local\Temp\27586c74b21a37d4c7fb0641271cba330fc71d4b8826632a291f98cd34f668f9.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:5076

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    49eb6de91542787ab91da2f8fa3ac159

    SHA1

    e4c8b0c8adbcb8e5c31ab7663849aa2b42c7a1af

    SHA256

    9b0fe788e4247cc4ddd3e5f272404835c4d05bf7b031e41fb1d8eb9b0f0a5f63

    SHA512

    682e5386cd4f3fdd1ee8646ada5864b20f9682510372adc6cc2c462aef1312f11263c6b7d9e4c80e8725440d0bfc913ec28a61b2368dcb1e2a2cc987704a16c7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    e90650cda487010481b014dd4617ae70

    SHA1

    84f81b302fae8f114a3d109abf5f51f8b8dc5d7a

    SHA256

    368eb8fa2cb5be051d24fe82480b56d93f94c9f581d07492485efe404e632373

    SHA512

    a53d961a3785ada16bbf4806c6a249121cf524084b0edb7ad6cbcf66c8be69d478314d10d856bb9d3a2646a83b14159f1263bab471ed5cb3c8e8d4547b01e3c9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    3415a29c70e82fd6328049a8ab0797ae

    SHA1

    108a2c699ecb95a1398975c572512f1dfffc356b

    SHA256

    f8561d1834dc679b98cffbc5de85f321ac138f19b29411627b59047411081dca

    SHA512

    924f44453e13b5a2026cd9008ad318451e9e759fbfa2d35dd70d5a09904de75176f3af4bdc93630d1fef1f84adfed64e26aa41d1176cdd22eb492413960eff92

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    96a01f8fb8f3cf9c85ce7969d3085539

    SHA1

    ef75bafa6e0a2d55e009bf1ced704baf3adba515

    SHA256

    7638119682f9d6a29cacb31b2c12d1a8bb1a6e9495e81b6a14d3606486f4c4bf

    SHA512

    f824ba78bffa9b7c8f83841cb1a0f82834959798188319eae9f7ad0c2bdf3cdb16b45e574291b76d9eba9b8ab3406b6b5f3bee42252908c86d0ce0e00ad524ce

    Download Submit