Overview

overview

8

Static

static

3

bfc6b11933...64.exe

windows7-x64

8

bfc6b11933...64.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    140s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-11-2023 15:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bfc6b11933202e5eeddb6e4d28089d872429b6e48e47b3659c857120ecc6cf64.exe

  • Size

    5.1MB

  • MD5

    9cd255ec54fb1db67f15913f751117f8

  • SHA1

    6f00d453adbf3ebb42c075ad1d96a64819629133

  • SHA256

    bfc6b11933202e5eeddb6e4d28089d872429b6e48e47b3659c857120ecc6cf64

  • SHA512

    625b0fd6d2300712aa62fa2bad90e22a05c904b3ce9c217f048aed99e282da2e0bbbe00f5e2157778ddd8afa4811cedfbc5b32bb1fca9f94062326702d212569

  • SSDEEP

    98304:Tu6wCUb2ZLddnXEJiDEWo5KG0uaQ5bzOJDb4v+h:TG2d65ZHTGN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bfc6b11933202e5eeddb6e4d28089d872429b6e48e47b3659c857120ecc6cf64.exe
    "C:\Users\Admin\AppData\Local\Temp\bfc6b11933202e5eeddb6e4d28089d872429b6e48e47b3659c857120ecc6cf64.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    0b43227edaef903795cf3b67253e922c

    SHA1

    e5a6c8138a2cff291d31d9945d49abff216bb8ca

    SHA256

    b4d3eefe6fa38a61cba675de506fb361a1152db755d7154f29fe14a2295e428c

    SHA512

    59883efdd83abc9c8a53dde64eaf7bb8e501255fb6c801c6e034674302534c9b29925b5404025fd70274b36d391e28921cd79d65426e6d00ea5e58a87339ffaf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    7KB

    MD5

    5385755c1cdb4d6a3f82e2f2c403fb6d

    SHA1

    0aa7f35f4ef77d62a669db8d833e1777a879386f

    SHA256

    b0f52d7f135f5de0a17e57d17600d95d81fb09644c290097d92206dd2e0dbeb1

    SHA512

    618109d5a9dac5702a78ec1bba5bcc66065c0961378ec686cc7b5d045f013e79b5cfe185db258adc86ad866c568dec7b6b728d89201a8d75f74fe27ece6f52c0

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    12f67f5186a0752c868e3c01124c6772

    SHA1

    286ba374dd277d9a341b01a1fca77f4c2768bb3c

    SHA256

    3d1584f34dfc845ee4d4705092844bae19e44c55ddf1a039d0d0a27d0ed1e451

    SHA512

    ac701db4a7b02b505a0889c3eb06b3c12d0812556802703bf7049c96985c304d43e54beb6f77d97ddb0f857f91ae56678a4b2e92bb378634b621dfda50eaaf87

    Download Submit