Overview

overview

8

Static

static

3

b3a01600ef...c6.exe

windows7-x64

8

b3a01600ef...c6.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    117s
  • max time network
    156s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07/01/2024, 17:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6.exe

  • Size

    4.3MB

  • MD5

    0e08d3c8723de65182d2ac8df8f93f20

  • SHA1

    0a4b0c5d87b92960e4371247b9b850db457872d1

  • SHA256

    b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6

  • SHA512

    61fbb27c88a15bf0d4f5f69e8c671e23a7ff909901b9b6d0b7e9cb5ac3335a7933b1d34bf70e4b93f51ae5281c3882c4c69627f8957c28f516e144b31315105f

  • SSDEEP

    49152:8MLPIdiWU/o5LcUekfbj+whN5+r5u8QeKxFOJxdb4vZKVA:JLPIAN/nUeKbj+UmKdzOJDb4v+A

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6.exe
    "C:\Users\Admin\AppData\Local\Temp\b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    25ad8d447ff23e23f405ec4031aa367f

    SHA1

    b822510798e9d00d8db54ea120ca290cec541a6f

    SHA256

    280a8da2886600266516f3881d499de2afea6506a5e1aaa8448d7a40c22cf924

    SHA512

    32726b681afafb7d7104752fe6a06172b08dcdf62fc309af7e5be1434ac0dd7df61a15dc366e59055d1ee692436785e86e1a4e45e5ad2ad76274881c49ca2c03

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    ed3635e801ccbe7bd9d732ecd4fcc592

    SHA1

    28d0a48800a714b08da6537251586901b7f2f762

    SHA256

    f4e421e5b449118be1d88273986edf85d866ffd39f681f573053753ca1c2a826

    SHA512

    bf4ad4dc4c42e139d58f325b6a24afd79315bec58c5825602d646a1610784a863bd76fdf7e1059d57e463654c10bbe807dc7482bc7edd960841a968da24cd5d8

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    00f4ea1dfc332caaf0c8171f6c93def3

    SHA1

    940267a83129f0e00bd47f73abbcfb71de392008

    SHA256

    6f4c43fef98b5856bc57d06d8bd306bd0956106449b8507449fa0e7e06d136af

    SHA512

    f44e2418f8cd36dcb8f2f3c27a583313e9464c428d92e20166d42a7d1c5cc0eb0434e92ab14613f39a1a2eb0ad13a8ece63fbb9e78c848310b9ca82145982113

    Download Submit