Overview

overview

8

Static

static

3

e9cb6af71f...bd.exe

windows7-x64

8

e9cb6af71f...bd.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    137s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/11/2023, 19:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd.exe

  • Size

    4.9MB

  • MD5

    686504ea18683ef47a1700c96d60b66a

  • SHA1

    bd83f7408a82aad453a447b004172464e67d6c1f

  • SHA256

    e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd

  • SHA512

    e1c784cac4a5a57859797eff51b09addb8f68a3419a4b115da54f109605d69e2c0da0cb77e290a55b5c19e78c0b7390cbf59180c3bf5bcc9a6be723b88aef9cd

  • SSDEEP

    98304:nrS2H6ei5ncznNN2co86WDASKdzOJDb4v+:WYzX2c6WDawN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd.exe
    "C:\Users\Admin\AppData\Local\Temp\e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:412

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
          Filesize

          7KB

          MD5

          8bd4591ea30166057331a9ef01bde69a

          SHA1

          9a2b353a4397e657e31cf48a0162f42bf61b8766

          SHA256

          4e49db0465ed265790c3d8048981bc151291ec0708d7a0468144b7dfb93b1bab

          SHA512

          0264d70335ced409c72705327f0c1f0bb66ce6f40cc027daace737457b2fa9afc4b56974cb0f6d3a1540180e48b686ca5e1a45d456d64815f9ee0b5b1f98fd0a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
          Filesize

          7KB

          MD5

          8bd4591ea30166057331a9ef01bde69a

          SHA1

          9a2b353a4397e657e31cf48a0162f42bf61b8766

          SHA256

          4e49db0465ed265790c3d8048981bc151291ec0708d7a0468144b7dfb93b1bab

          SHA512

          0264d70335ced409c72705327f0c1f0bb66ce6f40cc027daace737457b2fa9afc4b56974cb0f6d3a1540180e48b686ca5e1a45d456d64815f9ee0b5b1f98fd0a

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Yandex\ui
          Filesize

          38B

          MD5

          df388058c47c2e3444e7ad52df8c18a2

          SHA1

          f7762b93b45de2a02bdb32cd735784ba78cd06c5

          SHA256

          bd87bd592a6b0ebfc677ecc5de23e8f46879c59def51c598b1c918d47333d63b

          SHA512

          e157f1ce94654ed0a855dcc70508660db26daa7b940db19bcf6a823840e663409471c4d0043497cae071f01789fc46e23586a0d48ac5df295525e553fc1f16f6

          Download Submit