Overview

overview

8

Static

static

3

6b2c9b354c...34.exe

windows7-x64

8

6b2c9b354c...34.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    137s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/12/2023, 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6b2c9b354ccd6b717e29b7f366763018c0ffd5797fe06b51a012e72c71567434.exe

  • Size

    5.0MB

  • MD5

    352e18c34333db7e7116554157416d51

  • SHA1

    5f8790291fd024631b6322bbeb93c951e5ff595f

  • SHA256

    6b2c9b354ccd6b717e29b7f366763018c0ffd5797fe06b51a012e72c71567434

  • SHA512

    ff93f33c21d584cf65e5099397db9e5deae514d5b2031176dd5a16d7c1414c73781d3e0e3384cc833439ca5689df41b11713661d607e84f9188b73d8b25d9434

  • SSDEEP

    98304:zgu9llk/yHwNf3n48LYtQMKFfikjKdzOJDb4v+6Y:rllz0Yt506LwN0v+6Y

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6b2c9b354ccd6b717e29b7f366763018c0ffd5797fe06b51a012e72c71567434.exe
    "C:\Users\Admin\AppData\Local\Temp\6b2c9b354ccd6b717e29b7f366763018c0ffd5797fe06b51a012e72c71567434.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    122242cbd7ad5c42daab5b08d9c78bf9

    SHA1

    b5dfd75f260c355cfbc766e7a19baea0b65a988e

    SHA256

    eddd61baecb239dfc1385569cc5c8546c14282f71c1a9b5e86e2efaf73f013c2

    SHA512

    87a6c5fc94acbbdabec28fcd571ac3af39666395dd7c382ffe2b1819ed84e7e73a27483e08f33e548a8a1826dcacdbea3e0a8770c7ecc5db31156c1e26022148

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    c2325fb99197b8faa0bfb2f2394cab0a

    SHA1

    101251e81e0047f020f49ad95f1a6d4667906bf6

    SHA256

    5681cbdb1890f1356fd83bad6460bfc60580a3a08e468b290e535cabc19fa70e

    SHA512

    d9578a98fae6189f0df7c50b966ae17b8c1dd3c2ca0bd0d88f11831f1cf436f72ac4b230e922c213090804d24328d0d8922c8fa0f807b6a5f17657d2ac65ac4e

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    950d5affcaa3dd16fa5a9ae4ab1d45b8

    SHA1

    daaa233600de6b2a0c44904e783c13616976653c

    SHA256

    125a1ae24c96e99842baa4fe8d1a534a7aa75cb00e92cd70f3eb4152fe340f66

    SHA512

    ea31c4b8e3431d5341c1d71e41958c7ffde1c11340399893f80047f09e3c6fb5480769b7a5f821c24087c5c1d934abaf390b29254eda66292b991232e7a6d7f2

    Download Submit