Overview

overview

8

Static

static

3

558e0202c9...f8.exe

windows7-x64

8

558e0202c9...f8.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    137s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-11-2023 08:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    558e0202c91428badc700c9804b3dc5de0b5d4a66b1b6b4bbd3f4c0bfa6e19f8.exe

  • Size

    4.7MB

  • MD5

    3b9d11f42c6299597260359ef76ee68c

  • SHA1

    2d683b2b11cb9d01485ad94b15e7aaf393b8663a

  • SHA256

    558e0202c91428badc700c9804b3dc5de0b5d4a66b1b6b4bbd3f4c0bfa6e19f8

  • SHA512

    c226dd557958a6d66a52c0b0c1c52f3fcc1cda029243569f0895c55769f94f1b6b4252eb9d9e1c837f1aeecdde54d930119f493652468dddda5cc27667cd6800

  • SSDEEP

    98304:y2XeHdZChmK2dkvDzF2CLcKdzOJDb4v+f:edZybPLwN0v+f

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\558e0202c91428badc700c9804b3dc5de0b5d4a66b1b6b4bbd3f4c0bfa6e19f8.exe
    "C:\Users\Admin\AppData\Local\Temp\558e0202c91428badc700c9804b3dc5de0b5d4a66b1b6b4bbd3f4c0bfa6e19f8.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    eefea7b097696bc225bba02a9b97e746

    SHA1

    2e277c31c7b63c96b3d3bdcd793c5f4221785957

    SHA256

    f74b6324334c12d2dbb11bc72230ec040f00fb55c011563fe1c3799d69d9d46f

    SHA512

    0eb042173e4dcf9ae51923308dd952b665879b8a5287dce2c77fb0c6766aea40f13fe3d0656624a5ba36af41af49fd6bd2cd1f4904ef4181232ff8c8d6a0d1f4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    888077a3848e3ca598ab4dfa155429d7

    SHA1

    1eae048835782340c732f562ca52695b02727673

    SHA256

    41c69dc63fc70a4c09c959df41954798bb4e95620f0cdebba8ccacb6e416f29c

    SHA512

    8a8a1ca62d51a57047aa238a6f259486a0b74d759a146e10ee0939604ca82556a8975a59c8ba891598069c088757be2be2ab538bc819c2cf7c0b1dd4d4327508

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    abfcaae1f7712e1c1e91e303636b0edd

    SHA1

    6e1dd7edc7cef5885153038391c557c9e61a5de1

    SHA256

    b8845a8084338bfc7a8360dcb74dbedb1a1299d8351ca6f6a1cb504211627383

    SHA512

    2033f3b15bb53c0ccc5e97e01e1d797fd3ddc6b4cc50641df375a62c7111e8be879b5245652ab29b5ddcef56e5b1a8b49be0df78a5cf4b28c829da34c211e61c

    Download Submit