Overview

overview

10

Static

static

3

3a02094bab...ec.exe

windows7-x64

10

3a02094bab...ec.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    116s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31/12/2023, 14:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3a02094babb436f85ed933e87d47f5ec.exe

  • Size

    236KB

  • MD5

    3a02094babb436f85ed933e87d47f5ec

  • SHA1

    0b643724a7ed6378594eb3d014d9b3267cbbe5b1

  • SHA256

    6cd556eacd20b4fd6bd9e0856b712252ef0be5c1a63a2f36218aa4e7fa322235

  • SHA512

    9447bb818c2fa4235c3e8029ce59ed5e7faa64d6a276eab3130f4f37ff6e3f1d2f4f49ff9005e3d1f2427a9fbdd32847a8d6941f563b0426e702171a9a9f65a6

  • SSDEEP

    3072:EdNhxiHRcwKzzGKXWr8oYLVp0uP5cPLa6KMWM+x2rfdnpcJMyaegtmNZW6gmC:EtQ/mzGkoYZpDPCPLa64fmdK+dtCO

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3a02094babb436f85ed933e87d47f5ec.exe
    "C:\Users\Admin\AppData\Local\Temp\3a02094babb436f85ed933e87d47f5ec.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1464
    • C:\Users\Admin\glliy.exe
      "C:\Users\Admin\glliy.exe"
      2⤵
        PID:3244

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\glliy.exe
      Filesize

      7KB

      MD5

      2558db90b10bff8639cdf7a6040ed04b

      SHA1

      ef8c1e51f9ea8aa301f06dc3664e4fdc3da37bcf

      SHA256

      40c27b6ea392659ca95987ca797459e553dd13135e01df6a79b21b28dadd8125

      SHA512

      589cc18c5093fac001edf9c80300e37b05cbabb63d245544bbfce52313582e2e8ca4b9c0a1c5ad8e07da7b31d5eae32f0551f6ed26eedfe88e41d2d8196ee3dd

      Download Submit

    • C:\Users\Admin\glliy.exe
      Filesize

      14KB

      MD5

      bd8986f52a9430d0de61315a9dddffad

      SHA1

      09657d489265a3a6640b798f2b0d9db01e224e95

      SHA256

      17dff38b293f72c70b7cfe1293f9c1f842f427b754e371d9bb00d3b6113f67ca

      SHA512

      62651d1af15b9f12ffb5d8e56b68f59ebd906850cba8e79ab3de08f3e57f0e8a123fb0dee8202e90598536677aeea1aca3bc08016111a08586907126b59be4c8

      Download Submit

    • C:\Users\Admin\glliy.exe
      Filesize

      105KB

      MD5

      0a656c9f0163ef2217858108f9266d2a

      SHA1

      382299061283e5a8793593aed2c64b4f89cdb5dc

      SHA256

      f8436161254227b8734eeace0ecf947d78176a9870fbd79c61d0e66064113efd

      SHA512

      394fdd0c4cfb228615756207ba19d5f54a00476c0cb9b4a8ac0a3dbf6dbd32629a4766ab5e01bb67831ed2aeb12bc957b0c64af7beab95c04be2ad1f76dd5b03

      Download Submit