Overview

overview

4

Static

static

3

6e41bc2a40...97.exe

windows7-x64

4

6e41bc2a40...97.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    171s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-12-2023 12:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6e41bc2a4005670077cf6aeb56101e97.exe

  • Size

    762KB

  • MD5

    6e41bc2a4005670077cf6aeb56101e97

  • SHA1

    f27b7dfdf5ca15c5ff4cc79cda5e7c0d6c58b0e1

  • SHA256

    b690bc1964ae93d5acac84571af0609321b3be4b94ddd50934622e268fc28bb8

  • SHA512

    0e710d7dfc65c9fc432e8a147869ccd517fc7258c54f7076cf13630dc71fe8bb72c231c96f181cd6e02e6d1f699cf603e9b0071c1519ce228b9154e0431c43ec

  • SSDEEP

    12288:A+Vk02gPparxwgOEz0TOJTKmaWvGbGgdPwoXx1WMt8:Awk0VPpatOC0TOJTFfvz2PwoXXz+

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 1 IoCs
  • Modifies registry class 6 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6e41bc2a4005670077cf6aeb56101e97.exe
    "C:\Users\Admin\AppData\Local\Temp\6e41bc2a4005670077cf6aeb56101e97.exe"
    1⤵
    • Drops file in Windows directory
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4320-0-0x0000000000400000-0x00000000004D0000-memory.dmp

    Filesize

    832KB

    Download

  • memory/4320-1-0x0000000002340000-0x0000000002341000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4320-3-0x0000000000400000-0x00000000004D0000-memory.dmp

    Filesize

    832KB

    Download

  • memory/4320-4-0x0000000002340000-0x0000000002341000-memory.dmp

    Filesize

    4KB

    Download