e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887

Analysis

max time kernel
120s
max time network
125s
platform
windows7_x64
resource
win7-20231023-en
resource tags

arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
submitted
25/11/2023, 18:06

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887.exe
Size

4.7MB
MD5

8c4bb5759fee56b4b5a7c2b7b17d1eff
SHA1

bcc0677659f5f00f6ad3cf98942a2784bf6ca4e6
SHA256

e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887
SHA512

f26516f827e43f0c7185fa5485b09baf6aea2070fcf3f6dc4954c2fe34072fd1e5ebb91368daa4c350e0171c312c5e7360193dd9749668b04062c0f97e3e8662
SSDEEP

98304:9ADEt6hLH39zUUyHzQd4KdzOJDb4v+dv:Z2vlwN0v+d

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Loads dropped DLL 2 IoCs

pid	Process
2576	e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887.exe
2576	e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2576	e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887.exe

C:\Users\Admin\AppData\Local\Temp\e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887.exe
"C:\Users\Admin\AppData\Local\Temp\e26b222ec0f7fd88a5e060bdda3f0774618d36c4822de1e4e9d61003f7494887.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:2576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
7KB

MD5
e75c169449ec6d8ef9ebbe54347bdc89

SHA1
c01e5f48f50619a2a2abe5570aeefeba2feafa78

SHA256
0b0af1fb86e921bf289ce1dc651fa9fde52284fdf5ca1cd363b623a9072678fc

SHA512
1e371cb81a8fafc749ffebdfcd8ad918a5a2fbe736852d33254f8b5095c5a2d666e258bebfa4dd5d5dc1d7a280315887bbce89dab04681fae0c4601c85144296

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
7KB

MD5
e75c169449ec6d8ef9ebbe54347bdc89

SHA1
c01e5f48f50619a2a2abe5570aeefeba2feafa78

SHA256
0b0af1fb86e921bf289ce1dc651fa9fde52284fdf5ca1cd363b623a9072678fc

SHA512
1e371cb81a8fafc749ffebdfcd8ad918a5a2fbe736852d33254f8b5095c5a2d666e258bebfa4dd5d5dc1d7a280315887bbce89dab04681fae0c4601c85144296

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
1KB

MD5
c91fc76ba1aee7520d60cf71c7a3084b

SHA1
bc91bdb45a53304ac07afbab1061e99bbf258bc0

SHA256
de18a63225cb6ba0dae2aa253ba6d12a4daa3ce8666f9399d34548dfa2567ef4

SHA512
18d0654d8ae2687fd1f577b5f6980a658bb0251c7e9416f8f3d64c0b75c9209e48e1ec81a44537b1b05e675b71da5065867cbbc820ed88e5e85d69ccb55c0121

Download Submit
C:\Users\Admin\AppData\Roaming\Yandex\ui

Filesize
38B

MD5
5a6e3f1c5ce7cf97a11be48dddecbe90

SHA1
aa064596636161c2a0ba1fa39d3c72dba995eefb

SHA256
861b439f9635cddda1b5e8691a54d58d9f590061e02a281c8edc6723ec256939

SHA512
7b72d5ee5a4d837565ac194eea040c5f696cd2478e5a21fe6b07e977efcf2de5104c7ce56a676b847327070c25677e264b093bd5b12367b0ef39f499c52f3911

Download Submit
\Users\Admin\AppData\Local\Temp\yb698C.tmp

Filesize
134.6MB

MD5
d2fab09bcdd98afd12b47f065f3d78a8

SHA1
12e9fc7c0ca542b4678c5ecbfa2ec4339fe28db3

SHA256
35bb254b98f429d130cc626ae118309a1f142b5256117fa0be819d51913c266d

SHA512
babf88df838a0957426a322d995b0824125a06934f85daf0b6f88d6c2a3657847bc4b54c2290575e68da2f57367c49a7bdd0157354b999d28e3a5a563f4c349e

Download Submit
\Users\Admin\AppData\Local\Temp\yb698C.tmp

Filesize
134.6MB

MD5
d2fab09bcdd98afd12b47f065f3d78a8

SHA1
12e9fc7c0ca542b4678c5ecbfa2ec4339fe28db3

SHA256
35bb254b98f429d130cc626ae118309a1f142b5256117fa0be819d51913c266d

SHA512
babf88df838a0957426a322d995b0824125a06934f85daf0b6f88d6c2a3657847bc4b54c2290575e68da2f57367c49a7bdd0157354b999d28e3a5a563f4c349e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads