Overview

overview

8

Static

static

3

8d28379aa4...f8.exe

windows7-x64

8

8d28379aa4...f8.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    141s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/11/2023, 17:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8d28379aa49d54980f6c0d761be676f7fc5e9ecb04905d762ef27a712157a0f8.exe

  • Size

    4.7MB

  • MD5

    8dc57407465192d0bdc18c7bcdbdb730

  • SHA1

    2154889ebcb5be6e23c20c62161f03bc89248575

  • SHA256

    8d28379aa49d54980f6c0d761be676f7fc5e9ecb04905d762ef27a712157a0f8

  • SHA512

    48011941cd26fc32cd18605fb82559554b32ec939f05458a05b92581b4e02d2d01e9b276a59d14e995ed4958c5fcf7ec6714318b820a0ba8ba1b493dcf12dcda

  • SSDEEP

    98304:y2XeHdZChmK2dkvDzF2CLcKdzOJDb4v+f:edZybPLwN0v+f

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8d28379aa49d54980f6c0d761be676f7fc5e9ecb04905d762ef27a712157a0f8.exe
    "C:\Users\Admin\AppData\Local\Temp\8d28379aa49d54980f6c0d761be676f7fc5e9ecb04905d762ef27a712157a0f8.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    99e07728c13b4f52296fc54b73f1fb07

    SHA1

    72e7cb7f3113b17c3e7f48fcef8dbcc04c05c671

    SHA256

    c4fc2b81ea84a891bb976f6c19d15780c4e8f72bb98c842cb25e330dce5f5e81

    SHA512

    ca2a35cda3a80c758337294fc8b4de8c3da9542ce6a6b745c87d5141fe4f1874c4353c8d89f22ca00686ef43665233f83db3dca2a15bc93b69fbe62573060b4d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    7KB

    MD5

    934314d2c507c260d2a69c6794b3aff9

    SHA1

    ca87ac94abbd2cc3c3d9ff38c482ca1737bc4a64

    SHA256

    72704004f72542d96afb3be9cb75b215bdaeb1f07de776e3293274dec12d2f8a

    SHA512

    cfc2e50050af67a34fe182226e2e52a79646140f22c12f41b4e628ad0149bfa94f83f93b45c70b1cf05a55a7c386631166993824f94556315e510dcb9436e1f9

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    0b502c1409de632b73fca62fec730439

    SHA1

    066458ae5fcb8b80c51d61732fdfeb2cbb92ff59

    SHA256

    330a8e6f0cf2e6c42c346732f94f09644e1b243ac2daa5ee9274a2e35c49ba8a

    SHA512

    9713630cc73814e76da68497a8997ac539f9ef8a8869101c255385991df124eda88998bbf45350afa735b8370cd951652116368897df70390396006e7dcb8b4c

    Download Submit