Overview

overview

7

Static

static

3

341f56a546...d5.exe

windows7-x64

7

341f56a546...d5.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 18:21

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    341f56a54628030b51deb5ca2debd2d5.exe

  • Size

    1.6MB

  • MD5

    341f56a54628030b51deb5ca2debd2d5

  • SHA1

    0c870dd64ed55fa40d89e056df21f7299ce6f841

  • SHA256

    ddc033f8298c061a829d9725f5f1772562c1fd093cc0101d3573e12b85f14cc7

  • SHA512

    ac22fae9de4a752c2f060a281d211cce065fdb4c804b3b5b2870115e413125ca5c6ab0b2bf2ad21b42ebae1da4b8d64eeb71f8b521d9e034b4d263f62607be89

  • SSDEEP

    49152:vhNFSsdfeGN5bmV9SA37pBt6TpCeGGw3edU+a:kWGGNFmX/37pBt6TpCwdU+a

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs
  • Suspicious use of SetWindowsHookEx 20 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\341f56a54628030b51deb5ca2debd2d5.exe
    "C:\Users\Admin\AppData\Local\Temp\341f56a54628030b51deb5ca2debd2d5.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1340

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Users\Admin\AppData\Local\Temp\E_N4\iext.fnr
          Filesize

          216KB

          MD5

          f91cfe6df71fbbbe56ddf70247ab9b49

          SHA1

          6d6e25569bca49c19f2a4b07675194a1bf055eb4

          SHA256

          7169863abd2e9a59ae706235224222754c44eea12a4304f6ac426ac4a89688a9

          SHA512

          841a0632b0bca43d590f72602a0161e04c77e1e881d5bd6d294edab4f9c5577bb8e46f15dd6a0c831e5774fa53e449397146d57b8575ea04506a64f3842490aa

          Download Submit

        • \Users\Admin\AppData\Local\Temp\E_N4\krnln.fnr
          Filesize

          1.1MB

          MD5

          11696f334778bda9231aa6b72bbcdaf7

          SHA1

          09c604c90578fcbd4f596bdb013938a7523afbc8

          SHA256

          f1cd13f9ec76d87d4f5351ec5eee092fc530cde46bc71f74e0bd6c9fd7de9b9c

          SHA512

          071e8bd5ab8e4f12bbaf949c6979207257147eb8aa1d6ef7741ada64938721a15f8e78c6f74e74b642bdb5fde1e99b6059275c1e6b3d294f6e6c9071dd5535d1

          Download Submit

        • memory/1340-0-0x0000000000400000-0x00000000004DD000-memory.dmp

          Filesize

          884KB

          Download

        • memory/1340-9-0x00000000003A0000-0x00000000003E4000-memory.dmp

          Filesize

          272KB

          Download

        • memory/1340-12-0x0000000000400000-0x00000000004DD000-memory.dmp

          Filesize

          884KB

          Download