Overview

overview

7

Static

static

3

dcd7c52797...ec.exe

windows7-x64

7

dcd7c52797...ec.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    15/11/2023, 09:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    dcd7c52797713f2a1f7086708cdeac72a73b1daf1976291cece477d09f4727ec.exe

  • Size

    10.7MB

  • MD5

    4b06ade83bfffef7684672bb0f2920a1

  • SHA1

    075f233bd585de4b37426f99dc9eb9a0cabe48e3

  • SHA256

    dcd7c52797713f2a1f7086708cdeac72a73b1daf1976291cece477d09f4727ec

  • SHA512

    ccafa2e0d7066e50a7896588fdb9a34a930b72cb5a349e3e48b10b8d70fbccd4fde69364cce44f195a8b1941c943d272b5607f34c72560734645eaa6c951be9e

  • SSDEEP

    196608:Olbm3Da/XhqXGuDKMhMpzbFoN1FxJBeLBwh:VUqXpKA6yLFxkih

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of NtSetInformationThreadHideFromDebugger 17 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dcd7c52797713f2a1f7086708cdeac72a73b1daf1976291cece477d09f4727ec.exe
    "C:\Users\Admin\AppData\Local\Temp\dcd7c52797713f2a1f7086708cdeac72a73b1daf1976291cece477d09f4727ec.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\E2EECore.2.7.2.dll
          Filesize

          8.4MB

          MD5

          8b6c94bbdbfb213e94a5dcb4fac28ce3

          SHA1

          b56102ca4f03556f387f8b30e2b404efabe0cb65

          SHA256

          982a177924762f270b36fe34c7d6847392b48ae53151dc2011078dceef487a53

          SHA512

          9d6d63b5d8cf7a978d7e91126d7a343c2f7acd00022da9d692f63e50835fdd84a59a93328564f10622f2b1f6adfd7febdd98b8ddb294d0754ed45cc9c165d25a

          Download Submit

        • memory/1728-842-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-846-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-812-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-814-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-816-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-818-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-820-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-822-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-824-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-848-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-830-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-828-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-832-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-834-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-836-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-838-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-840-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-0-0x0000000000400000-0x0000000000EB9000-memory.dmp

          Filesize

          10.7MB

          Download

        • memory/1728-811-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-844-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-826-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-850-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-852-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-854-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-856-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-858-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-860-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-862-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-864-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-866-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-868-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-870-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-872-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-2548-0x0000000002AB0000-0x0000000002C31000-memory.dmp

          Filesize

          1.5MB

          Download

        • memory/1728-8686-0x0000000002C40000-0x0000000002D51000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1728-1-0x00000000750E0000-0x0000000075127000-memory.dmp

          Filesize

          284KB

          Download

        • memory/1728-8692-0x0000000000400000-0x0000000000EB9000-memory.dmp

          Filesize

          10.7MB

          Download

        • memory/1728-8694-0x0000000000400000-0x0000000000EB9000-memory.dmp

          Filesize

          10.7MB

          Download