c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea

Analysis

max time kernel
122s
max time network
127s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
12-01-2024 15:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea.exe
Size

4.3MB
MD5

acab3b4eeb97bba1856be00b2706b2c6
SHA1

9cfa88546aa622aa594a81adad8dd6a6cb5963cd
SHA256

c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea
SHA512

1c41e782620ca2779bc4f2ab10a2e395f56bd3c85934b38d6dc42cd692395e76d95ba432693760b31910e0fd6a3a8dc48af7bdb233e9f724bdfe362503981646
SSDEEP

49152:qMLPIdiWU/o5LcUekfbj+whw5+r5u8QeKxFOJxdb4vZKVB:bLPIAN/nUeKbj+UFKdzOJDb4v+B

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Loads dropped DLL 2 IoCs

pid	Process
1712	c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea.exe
1712	c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1712	c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea.exe

C:\Users\Admin\AppData\Local\Temp\c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea.exe
"C:\Users\Admin\AppData\Local\Temp\c5e8233e83ce5601b09bba4119341d357c5cf64f43229a4bdaeb05bf34237aea.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
1KB

MD5
8c4ec39b0852421c60dba1c38cf58609

SHA1
ab2bd62f449467462f8212b926210f28fd58bdfd

SHA256
f7aae4bc9748a3bb8795ecef421bd5c317dcea715f5be5d62b9e850fac565f65

SHA512
1fed273516f845e4f4674486a31ccee2c50d60fdce3afa1b4136be332ca9761a4ce780004ebf118d4379accc0d49c74441153c78d4bd83b2fed847483576933a

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
3KB

MD5
7a60e25d410e071c6fa9ab2913007b2f

SHA1
abffc81413ab6c269c31fc210e0c448eaa952f8b

SHA256
14bb544cd5d585d3b65f1298ba53afe95bd2e2db4752c60358f0439e38dde1c8

SHA512
ca1862699c3c0e0c5c79c8196f20c1c6b850362f776db51a387b30ebb5ace28ba5d04e5669716ddae42e5418185b5c7e53d6d1b336d9b32957f82fe39b394545

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
4KB

MD5
2d646363172358c4abd5ebf7fc913a1b

SHA1
16760bdbd2ac7c53dcfea579fa94e8cfac66bcfe

SHA256
4a416f5047fd8ff6d3bc4ccc5a9529967eb8f1b2cface6adc3964849897d84c1

SHA512
4c0dd92f1af1048c047b03b084ccd1122d29f8848573f50443b832c6fa2cab5ee24c7bae4bf3209180e4950ec37112726f3e583a61bccc008fed68e0d8af6a2d

Download Submit
C:\Users\Admin\AppData\Roaming\Yandex\ui

Filesize
38B

MD5
81abc9fddfb548deae86eb7fc0970829

SHA1
fe78781ea8c76ddacb91296accfb0de167060c6d

SHA256
eedcd035435f60b4dc5d286875a5b8169425822260ab74c2e5434f4160216475

SHA512
75ad0b8a28c08bc99986aa99cd3147135a7859421ca714c1fad204dc181ae35e425288ed08e3ff8bd33e5cf4f4f730fa7c2f698e2366d9767cb79f2945dc8300

Download Submit
\Users\Admin\AppData\Local\Temp\yb452B.tmp

Filesize
24.7MB

MD5
d507cb5cf2321af6aa3e75a5318da30d

SHA1
22defe5686ed188473f31db39f6203469bca52ef

SHA256
18ae32a570faf47d2a85b3b2da038dfce23bc6fb2b0b992f96bcf3d9c20d6b6d

SHA512
15a8173ba2505cf5d3f4cd864254330e61479197072d9445fad2e6da382f8c561ddd54f35292f47cd8fc27eeb8e91c4ac52a184b2eed80d76702fc31d0d84711

Download Submit
\Users\Admin\AppData\Local\Temp\yb452B.tmp

Filesize
52.6MB

MD5
0aa2b8134affc3398a2983f479e8cd0c

SHA1
5fbc7915d9073e0414c028bc87bc2d76ee251016

SHA256
37a3d6bb1ec0168a624b748187a7415a72b3c60ef07155a18b54a529aa0ee7f4

SHA512
759788769ce2e93aae099db73b1664ac2131e6a1ce923db96b5953017a6b58c982904c584529b208097918ce8bf1e425a3b26440776f4ff9f71ff600f83e9cf1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads