Overview

overview

8

Static

static

3

4081f3bf3d...50.exe

windows7-x64

8

4081f3bf3d...50.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-11-2023 18:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4081f3bf3d26b6d6c1965015cb2e2a26eb9710212523f35d7555a2fc021d1450.exe

  • Size

    4.1MB

  • MD5

    5425b3dc164685115b04884c0e65923f

  • SHA1

    ca05cb9b99a73189d36be1098de799a112e563aa

  • SHA256

    4081f3bf3d26b6d6c1965015cb2e2a26eb9710212523f35d7555a2fc021d1450

  • SHA512

    a34a61ce72c38a26beb85978841ca25d5f733e0e73ade5126518696a181fe600f8ebdc66b45a8b5a4036fcd4ba7b27a059a5743aed67d1accffeec47a1ac01ae

  • SSDEEP

    49152:Wb2XfWHdZ8BhE7K2dEj9GY+r5u8QeKxFOJxdb4vZKVe:U2XeHdZChmK2dZKdzOJDb4v+e

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4081f3bf3d26b6d6c1965015cb2e2a26eb9710212523f35d7555a2fc021d1450.exe
    "C:\Users\Admin\AppData\Local\Temp\4081f3bf3d26b6d6c1965015cb2e2a26eb9710212523f35d7555a2fc021d1450.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    01d575065b08e8d432985417a1033d3d

    SHA1

    2b1cdbc5f6a70c0f42cb69a97a53e60911fe6a98

    SHA256

    abb55ab8cba40b279ad64f7872c0aa3e23362ec114c663621ae81e75c3299395

    SHA512

    ce9bf3ee8d13b834e54c87759d4bebcde216cd107d7475859e297c8d92436af530dd20b6bc137861e666586c3417f1e5a17d48787d533b8cbd6937ffd5ac650b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    2ff0c5a5a03b6c0a9db5b41198a15d38

    SHA1

    2fe9e1e9224b95297a10f2652371d57938bda191

    SHA256

    ebe8dd644c2141249a4b89fa95971c8a35e8e2ba209fbeac13d92c45200420f0

    SHA512

    feee5a77cae2be50e6af92c87d99d5545f91b77d5086edd1a4d28fef30a27fa6d085d6cc51b1c27ddebc6d216d82b851c50b4075881a0ba0c3ed8706ef99362b

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    9fbe56f1529656d87ae4f9a097faed91

    SHA1

    e745815965235fb58e1f71220de2334d04be71b7

    SHA256

    3fe802878ac8cd08f44bf8a402fcc2edea095b2c12313ce144f20b70189e4a46

    SHA512

    105943ac26f50b0171b4c9a7ad8d0b6c832c0465f2fe738cd0a19aa311e093ed0795bbf6b4be9bb4f56d55b103912e2d17a605116d2bffbaab68bfe39ae15a1e

    Download Submit