Overview

overview

3

Static

static

3

1c9b6c7367...95.exe

windows7-x64

1

1c9b6c7367...95.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    82s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-12-2023 11:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1c9b6c7367f320529dc11e2276c72b95.exe

  • Size

    220KB

  • MD5

    1c9b6c7367f320529dc11e2276c72b95

  • SHA1

    5e692e2343de182043646939b606126624d8a04a

  • SHA256

    52d9256b7b114f4561fa0144c6a7353afb4267539e77e34677d49920fbc16d84

  • SHA512

    e215a36f08b1a06d9dc83e2814ded7a2acc5067089e0f1d73084b8ac4cb85282ba435a84596a023b5d645b067bc0187bac80064964c20866fccbefaf5a4287c1

  • SSDEEP

    3072:HAVeTynFI5ZdEI+5RhY/3zt8WS0FDtW7M2Zm2+0lZHwuj55UqwsdoDNbh4VTud:EoZdElRq/3zCW0m2+YmEdoDNFcI

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1c9b6c7367f320529dc11e2276c72b95.exe
    "C:\Users\Admin\AppData\Local\Temp\1c9b6c7367f320529dc11e2276c72b95.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2476
    • C:\Users\Admin\ttdes.exe
      "C:\Users\Admin\ttdes.exe"
      2⤵
        PID:3380
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:2860

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • C:\Users\Admin\ttdes.exe
        Filesize

        29KB

        MD5

        63e671f11b4607f4c23502b4b93d8c9c

        SHA1

        54ee8d904c1870c38125530d7f4abbe05e86be34

        SHA256

        ab6647b177064c46ae51bb35df37c8e50b894cb544bc66a8fefb36736a6a38ba

        SHA512

        81656fade60d81e7de8817e8d35ab59a5729878f209903e354dafef4a7ca22ea79b834a6e501c306280e5b37435cdf16581455b6b04e7c4edaa609b0dbeddf41

        Download Submit

      • C:\Users\Admin\ttdes.exe
        Filesize

        10KB

        MD5

        40759a1820243d714ee39d199c4f682c

        SHA1

        e97be0b314e492592565da7454ba0feec5504177

        SHA256

        d71480e49f80e3411a44fb1d90feebeffbdbf6bef769f34091bd1e79515c8703

        SHA512

        3686c883487ccfd157d944fa8cda861630a54ccb21f5d6822bef404d42e491bf8337f78421739cfa873e818476a648cf6d54e682b1e6ca0b39dcbd1d21af0812

        Download Submit

      • C:\Users\Admin\ttdes.exe
        Filesize

        39KB

        MD5

        26031485baf1acd428c1cd9453813faa

        SHA1

        f7e1581f94fa69fe869339960ff4653b04c319de

        SHA256

        18d19649aa1edbda8786ffd97d3250007edc1de88f1bdd6dab1127e2d7cd3c33

        SHA512

        d0e69b7828594bf15a20f132473f604bb23379f21f7bb664b070558c3d22c42aa1d2dafef69a4e3b68bc0ab7b509898d4c2a9a8b917a798442fe95a67211f24d

        Download Submit