Overview

overview

8

Static

static

3

0a71d3afb0...73.exe

windows7-x64

8

0a71d3afb0...73.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    150s
  • max time network
    173s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-11-2023 15:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a71d3afb0f4312d50c417e414f1e6a8f86419fba047ca8b64b53407f450ec73.exe

  • Size

    4.0MB

  • MD5

    1f6c12c4d99e62e383702c4fe7d7b45c

  • SHA1

    6ae299e59e3800d8224241428e52d25d29c20b38

  • SHA256

    0a71d3afb0f4312d50c417e414f1e6a8f86419fba047ca8b64b53407f450ec73

  • SHA512

    49bbd34ee783074b7cc347421131d8091eb937e518ecb282b64d4db9e5c7467f67a3c93a4ec52471b656547a0dda7dd40893fea07790e6a6f40af0964ab673e3

  • SSDEEP

    49152:6ub3nCuhEBygPHQK2FWK9w8Y+r5u8QeKxFOJxdb4vZKVx:hb3CuhEcgYK2FhKdzOJDb4v+x

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0a71d3afb0f4312d50c417e414f1e6a8f86419fba047ca8b64b53407f450ec73.exe
    "C:\Users\Admin\AppData\Local\Temp\0a71d3afb0f4312d50c417e414f1e6a8f86419fba047ca8b64b53407f450ec73.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    2KB

    MD5

    1c63239e58b54500a666a7790e835d55

    SHA1

    a1cce6bb20793f53b2b1c775c5a669700165199f

    SHA256

    998f2d082bdac74c43732babbf3919fbbdd34ab37a8c6f011b5ee60b591cd16f

    SHA512

    bc2683dd7b54f4386e6654f54c1b4d0aa91c5d8cbae118610459f62aa802a8c7cf744dbfbe010a11fbb653054d1bbc7ffa3d635bf733e527b32ecfe65e876419

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    85cd3115459cee68f155165d50a266b3

    SHA1

    bfa90566c262e79d003bd11f2f355b63dac1cdd7

    SHA256

    70df1850f8553cd749a5635b74978290d5cb4a039a85e2c50df0029ddc59acc6

    SHA512

    1bba5df68a7744391d99fa6770c1ca4cdee75a58991b5d35ab4b9dbb42dc8f207c2a48b6069594f33f8640e885fd0f6a7a307aee37e199accc3af0ad12245dee

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    fa7f04673e2cf5f71ccd2f66bcc42c52

    SHA1

    5624395d56e57a9463e56859726f704705fbb821

    SHA256

    c92352090f64f91940b0d7906ea948bea38d7d4ae04dacf45b6bf99946592752

    SHA512

    08afe8e6d071f444b19b5d3c7592dd66275a720f9a9c31c5b8bec28972702f86fd127348f2674b16b7e835c45d531e2c9411bf614eb8dc8ec6397e98d10b41b0

    Download Submit