Overview

overview

8

Static

static

3

7117a493a2...58.exe

windows7-x64

8

7117a493a2...58.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    122s
  • max time network
    138s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/11/2023, 16:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    7117a493a229e629e9505deecf960007863ceb11646010498e15f44977b7dc58.exe

  • Size

    4.0MB

  • MD5

    f1c94cbd2ec3c44bddd8f2ad90b86eec

  • SHA1

    4d01b73cd4d7b2151f891b01015c20313631b67b

  • SHA256

    7117a493a229e629e9505deecf960007863ceb11646010498e15f44977b7dc58

  • SHA512

    4377c4d0b097ef84eab7b171108300b7fabd3642844cf096a69b460d8fa5a7b7e128d2d11ec2d45eaf10c44a9d8804dcb034c9aa52ba4704fe43dc51badb4c37

  • SSDEEP

    49152:6ub3nCuhEBygPHQK2FWK9w8Y+r5u8QeKxFOJxdb4vZKVx:hb3CuhEcgYK2FhKdzOJDb4v+x

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7117a493a229e629e9505deecf960007863ceb11646010498e15f44977b7dc58.exe
    "C:\Users\Admin\AppData\Local\Temp\7117a493a229e629e9505deecf960007863ceb11646010498e15f44977b7dc58.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4340

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
          Filesize

          4KB

          MD5

          6c5cc173c183571a6980e492a66cdab0

          SHA1

          b17ff030641aaf46defc6582b6bade8768e816f0

          SHA256

          458a7cebf2d3ba1ab8ef34eedb72c3e990da91e3f469175befd8a7220919fbdb

          SHA512

          eb5044636c9a808761ad60fef8ff187b7032678daf02b1c005228ceb10cfdfa814e65d9cfb0781739e67e78c4c6b85f99f2889aa9be22c003b3f1579611ee29d

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Yandex\ui
          Filesize

          38B

          MD5

          91b10a3f427efc6456860e06c591d06a

          SHA1

          e6529283db8aa15fda385c4d26f28aa0420345af

          SHA256

          d84ed1acebc5078ea165b0460c8ac1e228fc433366e26fd7f42e4f7064e4b0f3

          SHA512

          dbbb36bd682ca46bad442db201d1c27afee682e08b140d900ebea28ff34e28c1a5556713a7d9795928ee64162a9716a3858487f370361fe439b5828241f5b78a

          Download Submit