Overview

overview

10

Static

static

3

51052df038...07.exe

windows7-x64

10

51052df038...07.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    3s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/01/2024, 19:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    51052df038e8b2eca19c83f5c1528007.exe

  • Size

    100KB

  • MD5

    51052df038e8b2eca19c83f5c1528007

  • SHA1

    0d1a6c8de33ffdfabd0e4c6ff40590ec05f7069f

  • SHA256

    7002541b4caafcd9e7f5b4bbdc801f49f1acab18b33d5ac8df9999589e6df510

  • SHA512

    5d30c35cca9a9a23d522da77b221c21aefaaadb520a890c83cd67079fdec2eda642b51dd9cdfaadaf8f7bd5310091b818f46e744f9ffbfba74446a013e5cea49

  • SSDEEP

    1536:BJtGD82NTzwd6/AMGAc4ohrPXo+73Rez8b0SyKNIjnZrJ:8w0PurPX7CKCnlJ

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\51052df038e8b2eca19c83f5c1528007.exe
    "C:\Users\Admin\AppData\Local\Temp\51052df038e8b2eca19c83f5c1528007.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3340
    • C:\Users\Admin\doezoc.exe
      "C:\Users\Admin\doezoc.exe"
      2⤵
        PID:3304

    Network

          MITRE ATT&CK Enterprise v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\doezoc.exe
            Filesize

            100KB

            MD5

            4ee9d1f46a28ffb6d2ae56bf133ab565

            SHA1

            9be53775e452995eb87ae53e6c116570ad5ad731

            SHA256

            7dde0a7fbfc0a3501aa1db58595fae70c2823f113b30db6c1123d74b33d1ca43

            SHA512

            c2bfe65539d07ac5355267192be8791d9a293dc69304182f334c25607f0752dfe8df4a727c5828b6da206617a15172c5e05f666b6c108a08090cfdc114bc05f8

            Download Submit

          • C:\Users\Admin\doezoc.exe
            Filesize

            96KB

            MD5

            8f2a707df7d23cd1282036042e3750de

            SHA1

            505488caf7a63b33458c374830a95d97fd921d3a

            SHA256

            42a21d157d1e070398c406e16ba646e89818d29a95d6ed3e29da790712d300bc

            SHA512

            f1609ab08f763d857680572344514a19a8d620ee848ea945bd1b8a6d678d308d96fdc2ce6c68de57440b89fc43b2af6d51d56efa320908d7269a93110e4958dc

            Download Submit

          • C:\Users\Admin\doezoc.exe
            Filesize

            59KB

            MD5

            6f74e68b0856de36cef9e3f455fe1ae0

            SHA1

            2789f1dd40d99c928eee43de1715537cb91cf7da

            SHA256

            3f961208e12e7b7cb2364d4d878635a95239b56fc24e28ca70eff5dbce319120

            SHA512

            657170da4f2bb145c2d28b78f67f4670d905773be8d4b9b0c9e254320f6b7e3e2d8f81f07fe8c0948edad7c1ed718826a5a3cdb408caf08f0ff3e33075a544ca

            Download Submit