Overview

overview

10

Static

static

10

22222.jar

windows7-x64

1

22222.jar

windows10-2004-x64

7

A.exe

windows7-x64

1

A.exe

windows10-2004-x64

1

ClouderaPortal.jar

windows7-x64

1

ClouderaPortal.jar

windows10-2004-x64

7

W-j.jar

windows7-x64

1

W-j.jar

windows10-2004-x64

7

ssh.jar

windows7-x64

1

ssh.jar

windows10-2004-x64

7

udp

ubuntu-18.04-amd64

10

Analysis

  • max time kernel
    140s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 13:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    A.exe

  • Size

    76KB

  • MD5

    ef04d5487b1a45b29054fa5214714e2b

  • SHA1

    dcda5360be950103f43d71e4668f0db2cac76e1e

  • SHA256

    e2b0dd06b53e6485a9647ff2ff00e6788b1e8ab38eaa62c1ef7c518e92351a73

  • SHA512

    73b8f9d8f9e4f9fd20dbfdfa20e073308ae9bbd2ac2ac677b44e059d625d40b0af264fed4fba3e0727195a0762c7e183bf1111dcde590fc3a8c688bdc52d1ac1

  • SSDEEP

    768:AsizDPjHibDEYIYWtnPWYwQ4ouhG+dKYFf9Ql5UVeTVBxVmVjGHdZwRsL3eOZVPt:5oFH9/w22rN2tVBx8pyL3HZVPwFi+py

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 1 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\A.exe
    "C:\Users\Admin\AppData\Local\Temp\A.exe"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2040-9-0x0000000000400000-0x0000000000421000-memory.dmp

    Filesize

    132KB

    Download