Overview

overview

7

Static

static

3

24feb8d13f...d4.exe

windows7-x64

7

24feb8d13f...d4.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 14:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    24feb8d13fa8a3de74ec0a4356ec95d4.exe

  • Size

    1.0MB

  • MD5

    24feb8d13fa8a3de74ec0a4356ec95d4

  • SHA1

    8ce7894d68f9392c0bb90746242de9ec3677085e

  • SHA256

    407244d20406dd97b529ec410a8645efc6ab9015ce1aef171a68940471706ffc

  • SHA512

    94365ce981ea69a9aef02fd8dc55274910abc112e5c403f1184a6318fe7d2598cfc0f7dd90989f847d1cbf0817941f52868423049cfd5c750b5f602dcb87b0c5

  • SSDEEP

    12288:oi7O7HmuPfGm5WWHLHnbSAgtobd1JY4R3ia/2wBeASsDdbupZimMNA/oAVkjIEsT:oKbm5WWHfCy1J/srooswNMtIAo7oS

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\24feb8d13fa8a3de74ec0a4356ec95d4.exe
    "C:\Users\Admin\AppData\Local\Temp\24feb8d13fa8a3de74ec0a4356ec95d4.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4000

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\ish240601281\bootstrap_30532.html
    Filesize

    156B

    MD5

    1ea9e5b417811379e874ad4870d5c51a

    SHA1

    a4bd01f828454f3619a815dbe5423b181ec4051c

    SHA256

    f076773a6e3ae0f1cee3c69232779a1aaaf05202db472040c0c8ea4a70af173a

    SHA512

    965c10d2aa5312602153338da873e8866d2782e0cf633befe5a552b770e08abf47a4d2e007cdef7010c212ebcb9fefea5610c41c7ed1553440eaeab7ddd72daa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\ish240601281\css\main.css
    Filesize

    5KB

    MD5

    036af3fceab406a0f64c0f52034f76e5

    SHA1

    6db1a1e1085e23a33719865a5fbef4e722cf9518

    SHA256

    79bdad673a5b1bc6a9df2415ccc8283370441c060be76a425e3c44132b6676e7

    SHA512

    6fb28664c5a82b1eae33bb95e69aa2da533cb8b1137630855b75b48785b93f1af8d636a22570a5cbe2f667cccb307ebc1b0a434e10cee29670dd4eadc68cfe07

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\ish240601281\css\sdk-ui\progress-bar.css
    Filesize

    506B

    MD5

    5335f1c12201b5f7cf5f8b4f5692e3d1

    SHA1

    13807a10369f7ff9ab3f9aba18135bccb98bec2d

    SHA256

    974cd89e64bdaa85bf36ed2a50af266d245d781a8139f5b45d7c55a0b0841dda

    SHA512

    0d4e54d2ffe96ccf548097f7812e3608537b4dae9687816983fddfb73223c196159cc6a39fcdc000784c79b2ced878efbc7a5b5f6e057973bf25b128124510df

    Download Submit

  • memory/4000-126-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-129-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-121-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-122-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-123-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-124-0x0000000000640000-0x0000000000641000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4000-125-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-0-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-127-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-1-0x0000000000640000-0x0000000000641000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4000-130-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-131-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-132-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-133-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-134-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-135-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-136-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/4000-137-0x0000000000400000-0x000000000050A000-memory.dmp

    Filesize

    1.0MB

    Download