Overview

overview

7

Static

static

3

108c0d520d...b7.exe

windows7-x64

7

108c0d520d...b7.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24-12-2023 20:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    108c0d520d6c8112acb5994f275e29b7.exe

  • Size

    216KB

  • MD5

    108c0d520d6c8112acb5994f275e29b7

  • SHA1

    f6fef13c3a2ab54888839a5644038eb54eff5087

  • SHA256

    168a2f285947d3c653a29ac89907f7b5aa4658bb72bdc0db5d72a4bf8368a119

  • SHA512

    78ecb4b3ae452136b1a23698899868356bcb6124281df09f55380dc0b8647c3be605e842b27250fa7b32688a3cdc89f30affd985f14b7ca19a2d17e784fcb3e0

  • SSDEEP

    6144:ILFWzBHT23oxyLSP8HZoWlzNL5Nzs7dnNmToQivTxXD7dWso:+wzNT2LG0H+Wd3O7dnNmT03dfo

Score
7/10

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\108c0d520d6c8112acb5994f275e29b7.exe
    "C:\Users\Admin\AppData\Local\Temp\108c0d520d6c8112acb5994f275e29b7.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:2296

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\xdl22EC.tmp
    Filesize

    13KB

    MD5

    32d39689baa24e0a1300260d8357eede

    SHA1

    1b4a8d1ad432df5c9fb0d05ebf3bd2caa8fa2962

    SHA256

    9d158434f454af30aac90846fa41c328b66e60111aaa2f91b83c002e5d7407dc

    SHA512

    81b820f9e938ef12eee9472c26afee5c663a97acca467a5eacae684f1be451eb01e3faf5952ca90a1f31375c25fd9d5cecc5d98f3cbcf1ccbe08ebb82a5ad368

    Download Submit

  • memory/2296-4-0x0000000000440000-0x00000000004B3000-memory.dmp

    Filesize

    460KB

    Download

  • memory/2296-1-0x0000000030000000-0x000000003000C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/2296-6-0x0000000030000000-0x000000003000C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/2296-5-0x0000000000440000-0x00000000004B3000-memory.dmp

    Filesize

    460KB

    Download