7de81eccc93ea2936c4b205bda166a2af79d3b2996254fab292c2e342ef01858

Analysis

max time kernel
2s
max time network
141s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
06-01-2024 12:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

463ff215602d11ae3905412fad1323b9.exe
Size

96KB
MD5

463ff215602d11ae3905412fad1323b9
SHA1

ae4defb6fb71a2d0c1d1fe40a7c75c48c06fd11e
SHA256

7de81eccc93ea2936c4b205bda166a2af79d3b2996254fab292c2e342ef01858
SHA512

062856787997aabd17554ee8e3998162a5bba54a5c4b60a51f4c673eb03e22ddb267250eecc0e03e4736a2eff42595e6df5a4c61eb377ca31dccc6631b53497a
SSDEEP

1536:rMBSG9sgzWwmhLmncdkadGVScGYJXeiyCnO+TI4K4I4i404R4Z1VcvsJOpPpMm4t:2SG5W6cOadGRJuH7ut/Tdvd+hXV/vU3c

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4760	463ff215602d11ae3905412fad1323b9.exe

C:\Users\Admin\AppData\Local\Temp\463ff215602d11ae3905412fad1323b9.exe
"C:\Users\Admin\AppData\Local\Temp\463ff215602d11ae3905412fad1323b9.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4760
- C:\Users\Admin\wooonod.exe
  "C:\Users\Admin\wooonod.exe"
  2⤵
  PID:3424

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\wooonod.exe

Filesize
96KB

MD5
531f120a9c9621a9cdad731fb775dff0

SHA1
5f6022b3de0a425ebfd37fde5596d602f19d612a

SHA256
fb82ca9fae31a05488a08429f2e31edd6101fa30f9b57f0985f2307c077a5c61

SHA512
bb19a8d23a730edd1c7d907e290a760efc2a0cdaa255517b0e101b0858a4ceb25fe8340cb21a73c64ec29856982ef8c4f329b19016baaf5d3cf8b922fddbbba5

Download Submit