Overview

overview

5

Static

static

3

02a9b056f5...4b.exe

windows7-x64

5

02a9b056f5...4b.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    145s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-12-2023 15:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    02a9b056f52c1807d432a0c8f2a2a54b.exe

  • Size

    127KB

  • MD5

    02a9b056f52c1807d432a0c8f2a2a54b

  • SHA1

    c4e27075a61159d279af0f368e52595e16ec05fd

  • SHA256

    91e7f18f5d9bf7ffe90d8fb2c373073197606673db8e76a6bd46d2fc9a7ce192

  • SHA512

    8a44c842fcc334a8f311a21b7af70f4c14f80d88d1b81fae5e1eada606b03b6abc33787ab48e9df8c3fdd83dc611d9e2e415b9ea407445784ceb98313b8796d8

  • SSDEEP

    3072:qmcuib2sz88Uj9Tk0qrDUWFMpeq2Gez7VUKhPFtEDSjm:qnur8CporgWFMpXSVUKhPFeSC

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Drops file in Windows directory 4 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\02a9b056f52c1807d432a0c8f2a2a54b.exe
    "C:\Users\Admin\AppData\Local\Temp\02a9b056f52c1807d432a0c8f2a2a54b.exe"
    1⤵
    • Drops file in System32 directory
    • Drops file in Windows directory
    • Suspicious use of SetWindowsHookEx
    PID:3636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\ProgramData\Microsoft\Windows\Start Menu\Programs\›®½ºTV Æ÷¸£³ë°Ë»ö.url
    Filesize

    132B

    MD5

    8d402e9a94fb503513e752821c0b112c

    SHA1

    9f6280139eecf61e2d48aa35f273745f7abe8931

    SHA256

    7548c614c75736de495b63e17811a42b6ffbbe8ed73714e5ab24d584b5623b7e

    SHA512

    12af02e7e88dffa8ff069a9c12aa7e8a8b63a537ebafa02a002cb00b83c5f6dfa3e70403c1729137e9d1520122762a9cb5590a40b27170b97ecab06660af92cd

    Download Submit

  • memory/3636-0-0x0000000000400000-0x0000000000421000-memory.dmp

    Filesize

    132KB

    Download

  • memory/3636-10-0x0000000000400000-0x0000000000421000-memory.dmp

    Filesize

    132KB

    Download