Overview

overview

7

Static

static

7

0593c5f2d0...4c.exe

windows7-x64

7

0593c5f2d0...4c.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    143s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/12/2023, 16:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0593c5f2d08269714202d1bf1dddc94c.exe

  • Size

    1.9MB

  • MD5

    0593c5f2d08269714202d1bf1dddc94c

  • SHA1

    ac9e5af401b9734d9bdf890413aea5188bc86de5

  • SHA256

    642eda9d93a46460be06c0e9ec93f2383d2a1dd9d951ac144fce9862f8de11f8

  • SHA512

    b6d84b0dbe1adab2b8d979be274a48a8ddd7e7a5c456c2c7b98e7076c86b3960799bd41db14d451b46f5fef9b0512f079cec13ce0d356b688418b10efac9b3ee

  • SSDEEP

    49152:wleIPF/IjH91jZNx1YWPg+TXZUmIxqTI1vSg8:zKAjdb1zI+cqTIJ

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0593c5f2d08269714202d1bf1dddc94c.exe
    "C:\Users\Admin\AppData\Local\Temp\0593c5f2d08269714202d1bf1dddc94c.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:3956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\SkinH_EL.dll
    Filesize

    688KB

    MD5

    bd42ef63fc0f79fdaaeca95d62a96bbb

    SHA1

    97ca8ccb0e6f7ffeb05dc441b2427feb0b634033

    SHA256

    573cf4e4dfa8fe51fc8b80b79cd626cb861260d26b6e4f627841e11b4dce2f48

    SHA512

    431b5487003add16865538de428bf518046ee97ab6423d88f92cda4ff263f971c0cf3827049465b9288a219cc32698fd687939c7c648870dd7d8d6776735c93c

    Download Submit

  • memory/3956-12-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-7-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-9-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-10-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-11-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-0-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-13-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-14-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-15-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-16-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-17-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-18-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-19-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/3956-20-0x0000000000400000-0x0000000000796000-memory.dmp

    Filesize

    3.6MB

    Download