bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b

Analysis

max time kernel
121s
max time network
127s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
08-01-2024 01:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b.exe
Size

4.3MB
MD5

5e5ebac4d1c1d32b6896923dafc77178
SHA1

02d6a453b4bf8d4616338d29b82f2022b3771b32
SHA256

bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b
SHA512

373b055d98a80fba21cce00d969c0debc48084242e644aec60fe6f92384c6019a9f0dbe7d08149943cccb64ad39b1297085faff3b269548e21ba90d299570041
SSDEEP

49152:qMLPIdiWU/o5LcUekfbj+whw5+r5u8QeKxFOJxdb4vZKVB:bLPIAN/nUeKbj+UFKdzOJDb4v+B

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Loads dropped DLL 2 IoCs

pid	Process
1684	bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b.exe
1684	bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1684	bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b.exe

C:\Users\Admin\AppData\Local\Temp\bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b.exe
"C:\Users\Admin\AppData\Local\Temp\bc2564c3ba3d9f182b74893769484aee43b7ac59bc5911ae9d8c602dece8483b.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:1684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
1KB

MD5
f6e1a4fb88d5d9be8b466531ac2eb89c

SHA1
2ed9000e4458691fc77f0bd271c4765af31ed024

SHA256
59c69371864f1e78d5b7c5b191fabed1c7932532fe8905dc5a3e71045505a9f3

SHA512
ce4f98d2b4d81426986171aef77b38fa32cd5af7b3222867a8fd2955e38cfe4182545e0392935b7558884d82c3215b03dd69e88951ff7aa5b9985f3a7cd32f46

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
3KB

MD5
6d88df16c955f213ee0fd4caf1ddb39d

SHA1
bd1bc1ee19f00f9f3421a16daacb19708fd9487e

SHA256
fe039c401f3ace9535c047419b673b6c215d614384e5cd4223c31ba526510a55

SHA512
d5ddeba2b8d94fdff5b83f8757f3eb15f6104dd298b12e5341126cd8974baf972546310cec3569f1697ef09925eac9afbd439d52987b85951d3b500e08ce312d

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
4KB

MD5
693e9699f370d4bb18d3797af2a20d32

SHA1
6479c72a417f7bade166773acde4a2d3d094fd8a

SHA256
4676eeba915162857e586a31b41aa2c88217371ff6e59b8d48461b6b137a0cfe

SHA512
55095964b78a3fbba9fe92313bbaa5ae7d49b44e4196995f9efa394131923cff2081b316fc6ec89929c03f1fa9341a2fcfc95ea12861be36da053da1a0ba4cec

Download Submit
C:\Users\Admin\AppData\Roaming\Yandex\ui

Filesize
38B

MD5
0f9dea32ad1b21c43cdc6509f2bacfe6

SHA1
ad897a7819aec2ece49a61c799499c94a45a6a1b

SHA256
53e61e271266777b2a6d2d55210acaf4e95301806c960ff61a29179b4694c2db

SHA512
79acd4c438cf972c9f072b5f95b933ff3ba9d45f956e5d63f0a635dec65881f558babbabc796b140fbfc46d5417977b0c4bef0f58a08ddd29ad862a14f1d67f5

Download Submit
\Users\Admin\AppData\Local\Temp\yb3025.tmp

Filesize
1024KB

MD5
41f3632826cb9943980d0fe651affaaa

SHA1
6f124869874197b12003705ffe823e6f57ec6a21

SHA256
570a7140944095140ea9754f60e28c2d3d741fcb653223e6ecc385c6cf5d3fa4

SHA512
e4fe10e0ff4c7d7e629ad3250295c7fd088eaed751d4924bcc99cca51c92ce0998dfaa0e9486b834dcef1ca544fab44fbb77c5d1b08f375a730db293258305a8

Download Submit
\Users\Admin\AppData\Local\Temp\yb3025.tmp

Filesize
768KB

MD5
91e0f7da9191209593cfc611679557c3

SHA1
be8e029df1a32ed5540f76ff5ae2a7e26207cd99

SHA256
a5e81cba2d991b46fa06080ab9ef8657c199d703341f060879a40f2863934b01

SHA512
9cc08e86d58194d9a92f6ab93b555a95f9e0e09b815037efc73006e66f69d32f9e71c8ce78bd96ea34f5ec5106d7cbdd59a5652a513ad2dbc25f1751c11be40e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads