Overview

overview

8

Static

static

3

b6f29f6735...5f.exe

windows7-x64

8

b6f29f6735...5f.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    143s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/11/2023, 18:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b6f29f67357bf0fc712c6e0e747b12829e6a910c7ade77164b46604e51e8fc5f.exe

  • Size

    4.7MB

  • MD5

    cd5e6866b990fb851af85c87424c13fa

  • SHA1

    e539e242ac3927b68384732bb5b98c05aa56ad93

  • SHA256

    b6f29f67357bf0fc712c6e0e747b12829e6a910c7ade77164b46604e51e8fc5f

  • SHA512

    3f2ca6eb2067fe4f1701d47f71b2868ed28bbcb4636adfb5ee783e8901913b04b2f4dead6e0adf18535415d077487cd26f9c8ce27005986d45246c506162ec3c

  • SSDEEP

    49152:xb2XfWHdZ8BhE7K2dM3Jqfmc2jRAjY+r5u8QeKxFOJxdb4vZKVI:12XeHdZChmK2d7eRR+KdzOJDb4v+I

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b6f29f67357bf0fc712c6e0e747b12829e6a910c7ade77164b46604e51e8fc5f.exe
    "C:\Users\Admin\AppData\Local\Temp\b6f29f67357bf0fc712c6e0e747b12829e6a910c7ade77164b46604e51e8fc5f.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    46674445db31f2e4b2a6c762a25f8bf1

    SHA1

    8d02e68cda958c0589376ff70362d8febd374782

    SHA256

    b478d9525e565d86738d1f8ada0ff685f5087311dabde74df707301f7b1854c9

    SHA512

    72e87ccf2a43a9296329b59310a7ca20a172eda769eb19d80972fa7026115804508e2cbacef2555e65877f935a905649a10d2f81803ecdd4e7d016d1ea28fa56

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    e271869d72d46f1fb776d26cb34c141e

    SHA1

    770caf5aad2766df342ed429fea1d368bb3106b6

    SHA256

    dc86b6d13437f8eb48654bdfa393cfb21b3358c0a9089cdb87aa1e3d9ad7be78

    SHA512

    ef80cf026c4f6b6c4f8170cb12e9624797dd12dc6ad9e532fbe5df9ef61f44a2620e9a2eba09a519e9dd2243476efd71551fe84360d5cd748350241a853abf1e

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    c5bc7423669732b02933287c6fd1c6d5

    SHA1

    e87fa5d2d0c0607d4b92a1be6f5c3b9d3b389d76

    SHA256

    b3751eca48bb363f674aa1e005fd15b6170a240dab358c344694aa0809ab9467

    SHA512

    37bb53dc6c5e474bf5748d49dab1d7412d8d859bd9b9e867f7cca6bc6d1529e6775e4c4ba12c1c87736c415f2d3152e8bd99e66a22cbb358ffdbf6051fb90fd3

    Download Submit