Analysis

  • max time kernel
    147s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29-12-2023 17:42

General

  • Target

    fc3de46c2f03f76b75fcba86ac8b9b3569dad946349877630e695d38fbc1e9f5.exe

  • Size

    4.3MB

  • MD5

    98c361e407818066e2bacb8f643d2346

  • SHA1

    ffdeb6ba6507cf581766412bc8c2424be2949cb1

  • SHA256

    fc3de46c2f03f76b75fcba86ac8b9b3569dad946349877630e695d38fbc1e9f5

  • SHA512

    e821e1e09348b67c285d0f484e70919bc0ef01793fc3ad1b86b84c7775368dbfdd47855fe3dc9452e6aac52875dbac40a7fd681d84a01aca2f1e6bfd764226b1

  • SSDEEP

    49152:qMLPIdiWU/o5LcUekfbj+whw5+r5u8QeKxFOJxdb4vZKVB:bLPIAN/nUeKbj+UFKdzOJDb4v+B

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\fc3de46c2f03f76b75fcba86ac8b9b3569dad946349877630e695d38fbc1e9f5.exe
    "C:\Users\Admin\AppData\Local\Temp\fc3de46c2f03f76b75fcba86ac8b9b3569dad946349877630e695d38fbc1e9f5.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log

    Filesize

    5KB

    MD5

    94517ef3009a2c65979b82ca75d03bc2

    SHA1

    f6108a57c3ad16f773330b5693c995c25cc5fefa

    SHA256

    ed9026162f3b87e66c8f24a52f3ad8689bb5c13b0ad5ea05cd0fb7567f231bd2

    SHA512

    345dc794bc8bb91a2c642a3f013b6a9c91935ecc5aea2533c3bd35afc8dfc88362754fa427cd677e946597b883af3888de7eef27df0a989cb5c782a6223bae2d

  • C:\Users\Admin\AppData\Roaming\Yandex\ui

    Filesize

    38B

    MD5

    f8ca49704f8321d97710a5324bcdefee

    SHA1

    bba1293e99b8a28ced7fec5aa649aa4971439972

    SHA256

    36528dd7921bda91a211ef7100b5814b7cbc1bb5531f580df489e421c9364774

    SHA512

    45a7560ebb5c4803a6a71295add50a6bb84c5c031eb8669cc6308f2241c08df980cac029999e0305ccf4a001f427b0aecc83d9ca660ada61bfc3858c5bf6574b