Analysis
-
max time kernel
2s -
max time network
32s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
22/12/2023, 16:29
General
-
Target
f0dee11c4287dc8424dcf1408a7a9fa0.exe
-
Size
52KB
-
MD5
f0dee11c4287dc8424dcf1408a7a9fa0
-
SHA1
fc25c2573b83e67c386e47aa12f31452136aa613
-
SHA256
fb7a5f92f2cb6ec57194043245fa6892ece692733add0976fe7092075069abc9
-
SHA512
414d970632cdfc707f843792f1591a96f169f0869622eb6c7c21dfc0a3ce06240977cf822dcde78f7fd5d009772eeca26b43a69e6270615cfd27ccf4b5d68a62
-
SSDEEP
768:wVWnGwwaDKRp1jskr/v/m89S3rkC6R+wibw52Tzp9I:wvQKRpNskr3mbkC6R+Xp9I
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\f0dee11c4287dc8424dcf1408a7a9fa0.exe"C:\Users\Admin\AppData\Local\Temp\f0dee11c4287dc8424dcf1408a7a9fa0.exe"1⤵
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\cepac.exe"C:\Users\Admin\cepac.exe"2⤵
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
52KB
MD59ded0000c46203176aa355c24e5e9787
SHA17af83faa3c9b3afc8bb81130591e0bf2e1ad2dfe
SHA2564df35f40e63bd059e77fc68efe38492d247955f5bd37444c25ab34f7884a6a8c
SHA51267abfc16a9d565efbdcfa4c5c82159431e03658679f7506966735047bdb516a8ffd6ba9a1b433acf643fffadeedc70386882be9923b418f8d06f978ed01d371e
-
Filesize
11KB
MD52df7d4bb16816ecbbc25c004f7dba612
SHA190a1db5324da31e3fea577ea83b4590211c3b47f
SHA2562f78d2f1416e9770c7c33bb17b96054740f5183cc936511ead7cac6fb25df9cf
SHA5120ca20948ec3efebd0cd23b76edc17341b8d7e2165572ea58bd57ae22ae7efec9c4a8a380945a461b53887bb39563120396a64f718008905553f3d9004f9ca2f7