Overview

overview

7

Static

static

7

7fd2815384...79.exe

windows7-x64

7

7fd2815384...79.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    142s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/11/2023, 14:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    7fd28153845931981ba5456fc4180e52a267a927718e0baa715e68de94d1a179.exe

  • Size

    4.3MB

  • MD5

    925ff48da66d92e3b8fd55b888fbc4dd

  • SHA1

    0cb793b7026ee8745fce7de8684c7279cb190cc7

  • SHA256

    7fd28153845931981ba5456fc4180e52a267a927718e0baa715e68de94d1a179

  • SHA512

    412792f7bd82cbc4fd9e408004a347f74a6694ae17314ed0a25c477f3243876df884574b55dc7d662e507dad961e70d975950950f53e9e38ae7d2ef522286ef9

  • SSDEEP

    98304:UWkfAXSwlwX1QKFdHh5q4F3ctoO9ySEQj5VhsBB:PSw4+O84F3ct1jNs

Score
7/10
upx

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7fd28153845931981ba5456fc4180e52a267a927718e0baa715e68de94d1a179.exe
    "C:\Users\Admin\AppData\Local\Temp\7fd28153845931981ba5456fc4180e52a267a927718e0baa715e68de94d1a179.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:2948

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\iext1.fnr.bbs.125.la
          Filesize

          306KB

          MD5

          6097a8eb959f58a4cbc6de99310bf73d

          SHA1

          a74a1d89a6b49b3ec2cd438cce7dcd0a217753fc

          SHA256

          c730eff648de62e6a2773a6ba2b5fbf6024dea0567491c77797d771fb006d387

          SHA512

          c6efd8741474ecf8a94ad68a60437b308532987667ec4b356b9af98b2a57e26583b130df2a71c39f3c7b56f0c6ef33efc0647b069af379ec85b6d41eef7a47c8

          Download Submit

        • memory/2948-0-0x0000000000400000-0x0000000000F4C000-memory.dmp

          Filesize

          11.3MB

          Download

        • memory/2948-6-0x0000000000400000-0x0000000000F4C000-memory.dmp

          Filesize

          11.3MB

          Download