49c2764153706cb165b85abaf8e9e2772514514b0f6965859d1382aba1049391

Analysis

max time kernel
121s
max time network
125s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
25/12/2023, 19:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

37ddf2df569a283bb3c3e5577f868d0d.exe
Size

304KB
MD5

37ddf2df569a283bb3c3e5577f868d0d
SHA1

53ca45659b6b017ea760828ad05a892ad5f0a0e1
SHA256

49c2764153706cb165b85abaf8e9e2772514514b0f6965859d1382aba1049391
SHA512

faf97663e4ff3355bf4b5cfa9519e5c508b426a2471882282c6931891e049b5a3638e1f0b93608365eb0b34127f1788c63566f9de7f91ef4db0080844d6daf03
SSDEEP

6144:MrnV9UarEuMEvjr24HtrxTUGFVENoeLEa4c+FamYae99GODt4C15tsJVnDQwj:MrnV9jEsX2utrxAG7EN0IH//J4wWvD

Score

7^/10

Malware Config

Signatures

Loads dropped DLL 3 IoCs

pid	Process
1756	37ddf2df569a283bb3c3e5577f868d0d.exe
1756	37ddf2df569a283bb3c3e5577f868d0d.exe
1756	37ddf2df569a283bb3c3e5577f868d0d.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1756	37ddf2df569a283bb3c3e5577f868d0d.exe

C:\Users\Admin\AppData\Local\Temp\37ddf2df569a283bb3c3e5577f868d0d.exe
"C:\Users\Admin\AppData\Local\Temp\37ddf2df569a283bb3c3e5577f868d0d.exe"
1⤵
- Loads dropped DLL
- Suspicious behavior: GetForegroundWindowSpam
PID:1756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\ProgramData\InstallMate\2041CF20\cfg\1.ini

Filesize
952B

MD5
2a1328f77bf9677e7d46636f8cd075b1

SHA1
2a3e2cf008b2c226723b29ce90033035bdb05a9f

SHA256
c2a18d2a54b57acf93c24efcd9c3fe935d3ae2c1938da0cddb75fa894c5c2182

SHA512
9efaa95ac5b394f61a5e8027e3d47c5669917c97d51fa5437d961af9f409f48d96227411fcbe4ac00eddfed7898c1092b25dbbce2e5648e441dea565cf22a3f0

Download Submit
C:\ProgramData\InstallMate\2041CF20\cfg\1.ini

Filesize
952B

MD5
c9d3a756ef281129533d7e2b6326d216

SHA1
cb3e15e5795d51cb739b74e80ba998fbfaf1fd89

SHA256
329f1626f6e133e44efefaf37b2eceb4d94d77e2ce1d5de8f6ef135e14cdca13

SHA512
9d8ed067a87bf52e3da2f7c7caa25338d8816328e667bb578b9c8077eca970cbf86e6cea34d79d33debeebd43ac859aaa79636a25120a0453fbfbbdb28ba4af5

Download Submit
C:\ProgramData\InstallMate\2041CF20\cfg\1.ini

Filesize
952B

MD5
746c9e6f91f5f340526c47991bd5e545

SHA1
dbeb7214bbba773f3529a7fd46541d4192d814f4

SHA256
a52deba9d677332d868ae23884deb051ec6610442471f1a58230e9ca93179f3f

SHA512
e321c5d64e7f47fe8db13a2443c2a4da124a20473063acee6595b7da2e795f2f74d9512a356b12a4411c82214db0847dea38784fb43e439d25008ead20e60b34

Download Submit
\Users\Admin\AppData\Local\Temp\Tsu04B2E8C0.dll

Filesize
267KB

MD5
d1ddd2bed23dd1e6a70855f5f7ba3e7b

SHA1
7c75eacc13fc2f225dfa9820ea306f6bbc891516

SHA256
e6f6af10a5d9496fda5f06b1dbc23f64ccda396b2fc219fd2464851edc003ba5

SHA512
d9647b1beffe978ef999e59417fbd6e9ce7fa7efbce690ce2039dd14bffbbdf8e18f56a529f1ce362a47b0b49121085afc6981e15b9177a3672e40de099369e1

Download Submit
\Users\Admin\AppData\Local\Temp\{C8A39447-7AE7-44A8-A643-32C51340B6B1}\_Setup.dll

Filesize
219KB

MD5
840dfd47ef11c7fe677507b9fa483b0e

SHA1
b11453b5ecbc1b81e7c11c6bfb54b9770f816d1d

SHA256
0ea85aaf61f87bc60a7879ade92611fc8d207f425f1a768cdc341ecd0746271b

SHA512
6187727f6ece7cc52e5143c5e38769ea67a7f545e22be2f1acd2c16b937500283f913d05ea6b9c525a194352cfa18464e3096c96c03780cdb8a23d387cb51f38

Download Submit
\Users\Admin\AppData\Local\Temp\{C8A39447-7AE7-44A8-A643-32C51340B6B1}\_Setupx.dll

Filesize
53KB

MD5
ce3b67e5923e1bc427e541b2a0a53cb4

SHA1
d3b521d5afd90ed22756dcecca63b4eec63e10a2

SHA256
6c2ef1a85b6cbe3993484af3a631c86d425279620b3c02593bf8364c8bca8318

SHA512
c7451789c5f4fcd3f30764e21d2f08a476e3ba4a20fe0d7954da48b06bcc2fd412bf49539d89e8b51f605418048d300457934a00a32921f222869ea9182d98be

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads