Overview

overview

7

Static

static

3

d5bf33f154...84.exe

windows7-x64

7

d5bf33f154...84.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    139s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-11-2023 06:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d5bf33f154836347129c1d8b62ac02ad4de6371519ea4ef8d426405dd8f47f84.exe

  • Size

    3.8MB

  • MD5

    3df5c994c5c3f22eae5dd6be829c15c5

  • SHA1

    4123f460078ef70617d39f746793740cb9971ef3

  • SHA256

    d5bf33f154836347129c1d8b62ac02ad4de6371519ea4ef8d426405dd8f47f84

  • SHA512

    270dd6170c4e1d93fd95636e8b3b649dac11f02e1c6304600bc81174f2b8e2b0632fe7b025b66746308964d89817222f7c491c20633c3e881d7c7f516a67b7d3

  • SSDEEP

    49152:1avuN+SLnkp8BiN2Fgq5q+BUczaiyRbVzW0+8HDxAQwzx6AaHPkOI4fdZiwkz:XRnkeBCUBUcRyRbVK0+Gw5sPkadZxkz

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 27 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d5bf33f154836347129c1d8b62ac02ad4de6371519ea4ef8d426405dd8f47f84.exe
    "C:\Users\Admin\AppData\Local\Temp\d5bf33f154836347129c1d8b62ac02ad4de6371519ea4ef8d426405dd8f47f84.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2108-0-0x0000000010000000-0x0000000010017000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2108-4-0x0000000000400000-0x0000000000805000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/2108-5-0x0000000000400000-0x0000000000805000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/2108-6-0x0000000002990000-0x0000000002F31000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/2108-7-0x0000000000400000-0x0000000000805000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/2108-8-0x0000000002990000-0x0000000002F31000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/2108-9-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-11-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-12-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-14-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-16-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-19-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-21-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-23-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-26-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-29-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-31-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-33-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-36-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-38-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-44-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-42-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-46-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-40-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-48-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-50-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-52-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-56-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-54-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-57-0x00000000027A0000-0x00000000027DE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2108-58-0x0000000000400000-0x0000000000805000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/2108-59-0x0000000002990000-0x0000000002F31000-memory.dmp

    Filesize

    5.6MB

    Download