Overview

overview

7

Static

static

3

Look Scanned.exe

windows7-x64

7

Look Scanned.exe

windows10-2004-x64

7

www/assets...8e7.js

windows7-x64

1

www/assets...8e7.js

windows10-2004-x64

1

www/assets...25e.js

windows7-x64

1

www/assets...25e.js

windows10-2004-x64

1

www/assets...643.js

windows7-x64

1

www/assets...643.js

windows10-2004-x64

1

www/assets...bf4.js

windows7-x64

1

www/assets...bf4.js

windows10-2004-x64

1

www/assets...320.js

windows7-x64

1

www/assets...320.js

windows10-2004-x64

1

www/assets...52d.js

windows7-x64

1

www/assets...52d.js

windows10-2004-x64

1

www/assets...a9b.js

windows7-x64

1

www/assets...a9b.js

windows10-2004-x64

1

www/assets...f60.js

windows7-x64

1

www/assets...f60.js

windows10-2004-x64

1

www/assets...8ea.js

windows7-x64

1

www/assets...8ea.js

windows10-2004-x64

1

www/assets...e1b.js

windows7-x64

1

www/assets...e1b.js

windows10-2004-x64

1

www/assets...ef.pdf

windows7-x64

1

www/assets...ef.pdf

windows10-2004-x64

1

www/index.html

windows7-x64

1

www/index.html

windows10-2004-x64

1

www/sw.js

windows7-x64

1

www/sw.js

windows10-2004-x64

1

www/workbo...772.js

windows7-x64

1

www/workbo...772.js

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    20-12-2023 04:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Look Scanned.exe

  • Size

    7.4MB

  • MD5

    cb22abed7229783ff9a28080a37b4650

  • SHA1

    e76bc198bee3daffe1a5a4ee10f2b7809daa4650

  • SHA256

    7032e091135e2bfbbd77c114ec7e4f2e37e5d8f01a95a0ef9fa5c0899a6fd6a5

  • SHA512

    bdf7917e49edc69253d465ec9de8f6e4a33ea381a0290628044560225dacda72b19c8f10223bf1db0747c705f0cde3bd5bfcf615f21e85fb5be6c3a8dc59f3c3

  • SSDEEP

    196608:i0iMnB4FMIZETKwjPePdrQJ3ofMBYnA7R:IgBQETKwvJ4T0

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 7 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Look Scanned.exe
    "C:\Users\Admin\AppData\Local\Temp\Look Scanned.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2232
    • C:\Users\Admin\AppData\Local\Temp\Look Scanned.exe
      "C:\Users\Admin\AppData\Local\Temp\Look Scanned.exe"
      2⤵
      • Loads dropped DLL
      PID:2612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\api-ms-win-core-file-l1-2-0.dll
    Filesize

    18KB

    MD5

    31e207b01e67b6563d2cf9110d06a1d2

    SHA1

    f12832e055c0f0d70fc44b4cb0215c17aa948332

    SHA256

    6b31a206c051815be9f7b366d2a9d2464747a56888a7307a924ecdac558271e1

    SHA512

    8a19324c8719ad6e7509de44fe79c6614c064daa47c4206a2b6ba4124b45bc4d8785cd51b8877c9ae5a1e0768ee1bba8f98e8d8c17b700aa8dadbd2801035a92

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\api-ms-win-core-file-l2-1-0.dll
    Filesize

    18KB

    MD5

    f2d12342c68e51aa748d4937f3ec7ded

    SHA1

    22368cebce89feb929004f73bd0f7236f7050e36

    SHA256

    6ba964ad55822f55eea14f73a48deb164b337639a82da677fc6efc1c539fe81e

    SHA512

    1e1440c97237716a6ac63e038d932edd0e7962230bfd6956b8aafa378b344daf92da696f0d1a57b0d71fef3722296b0d02f59b0fc9551e7944c445cc6b2b26a4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\api-ms-win-core-localization-l1-2-0.dll
    Filesize

    20KB

    MD5

    9b43f5733a98e5c6095996916f889987

    SHA1

    01ba4d84cb2adf3536c31b1c41375d141dcd2ba1

    SHA256

    2b7e6b54ebc2b9556e2f75e7372d4b2d16758f928b79395b8a55c7acdca93341

    SHA512

    b3497f31c155049c68b18d2f28383843bd8b8c078db119c07d63ec1900a6204e266a3bc1503734fd85c3766bddb25029880291e4f6060afe5df82717af6ae092

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\api-ms-win-core-processthreads-l1-1-1.dll
    Filesize

    18KB

    MD5

    95b0eb891b1e869568a2bf9ab67eab0f

    SHA1

    09cf1cbb3089fc418eb933d1b4611cca0d4ad327

    SHA256

    5129795d6e0aeca2fa56aaa56d71d2e9809c2ad77c14265abcb51fe832105e00

    SHA512

    7b2a74278fb7e51242006dc1e60d0e7cc3ed763eb4e7ed7e9da87797ea81fdb05857de838b745fac03468f85c755fe86331746466c30f87f127172de5524f057

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\api-ms-win-core-timezone-l1-1-0.dll
    Filesize

    18KB

    MD5

    69d1c46b9927d1c7cad8dfb5e18ab7ab

    SHA1

    1917be91adb466085678ebe036643cb187a7f4d5

    SHA256

    23f035627abed3460e6dbe8436e5b608c7c30f69091011f655f10ee49ebfd282

    SHA512

    365dbc3811b9bc2417937e433b7b748080c3ca1f4fc1b361117db46fd9dcfe49d948407dca33ca75d307b0e7f7919cc3550caa16e6950f10b0f46d16cbd36172

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\python311.dll
    Filesize

    3.7MB

    MD5

    43a8980e44852b56f3e112e4e77d1508

    SHA1

    17cadffc95596fd09a47eca66669bda79ef54c0b

    SHA256

    4c67824bd23fad66a0c64f3b5c42c27471d0272434f11f1b8f88a2cb23fb3864

    SHA512

    7788ffb0e37e7ed1ac3e515b7659c88cc9b18c3bab52edb92fe6338f421fa3139ef030220c36702e289c8a6f3d1f2db55bc6d379f25fce14f1db7304fea7ef2a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI22322\ucrtbase.dll
    Filesize

    977KB

    MD5

    5b1c91b53ac3c3026d50de8c05aba139

    SHA1

    b9c2d160b1ce856d9904a340362236473a3d559c

    SHA256

    d804ea40eacfc22a5e029b66d6d4f83d81f76a7ead80313b33839253f90af6b7

    SHA512

    8e01056830e65320d684245bf055305e03ef136545efb51aad484a5b1b006f7d534c30b7973da8628f49c31710ae23d3420f941156c941172b97efe9e1ef9a1f

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI22322\python311.dll
    Filesize

    3.1MB

    MD5

    51fc976d836078a840cc7c5dec771b7a

    SHA1

    d8ae2f083faa0edea1292e947fb8bc6c0d78c59b

    SHA256

    7b8e10ea706e3ecaafa3dba64be616fdfbcdc1aecb2c887d53112048256a8f86

    SHA512

    44e12eebeaed4d3d6846c66b1c8dca3dfa6fd39a010edbcdfff07e16052479c995e6a7e75505e75cf5c00cd079aebab31ef8bb9241bd5f102a129e15088f078d

    Download Submit