Overview

overview

5

Static

static

3

65e56ce344...d7.exe

windows7-x64

5

65e56ce344...d7.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 19:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65e56ce3447d1ce9b8d4ae8252e0cfd7.exe

  • Size

    147KB

  • MD5

    65e56ce3447d1ce9b8d4ae8252e0cfd7

  • SHA1

    aef679ff6f4dd9c10cd894debd10a2c7fddd44a4

  • SHA256

    4cfec29183b826961f7e1ce27b8920fe6b797190fc22a1b0deeb409dc4f47fe1

  • SHA512

    37506e913feef564aefdd0eb7dc986642f76789811857ce6a3bbe39c355f106c078a2555d068c7215a800f6a78e39dba3e1a57923c9f2faaf59b87dceb3ffd94

  • SSDEEP

    3072:ucldTVjzVNGEmgdxq2p7HZECtb73IwN6CrVkJUVy5ztcpc:uc9jzVAWxqY75Ewb7xJXy5ROc

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\65e56ce3447d1ce9b8d4ae8252e0cfd7.exe
    "C:\Users\Admin\AppData\Local\Temp\65e56ce3447d1ce9b8d4ae8252e0cfd7.exe"
    1⤵
    • Drops file in System32 directory
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2372-0-0x0000000000400000-0x0000000000407000-memory.dmp

    Filesize

    28KB

    Download

  • memory/2372-2-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-1-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-3-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-8-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-7-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-6-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-5-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-4-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-9-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-13-0x0000000074B40000-0x0000000074B4C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/2372-12-0x0000000000400000-0x0000000000407000-memory.dmp

    Filesize

    28KB

    Download

  • memory/2372-14-0x0000000074BB0000-0x0000000074CA0000-memory.dmp

    Filesize

    960KB

    Download

  • memory/2372-16-0x00000000760E0000-0x00000000760EA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2372-15-0x0000000072940000-0x0000000072A93000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/2372-18-0x0000000000400000-0x0000000000407000-memory.dmp

    Filesize

    28KB

    Download

  • memory/2372-17-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-19-0x00000000746C0000-0x0000000074718000-memory.dmp

    Filesize

    352KB

    Download

  • memory/2372-24-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-23-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-22-0x00000000746C0000-0x00000000746C7000-memory.dmp

    Filesize

    28KB

    Download

  • memory/2372-21-0x0000000077100000-0x0000000077106000-memory.dmp

    Filesize

    24KB

    Download

  • memory/2372-20-0x0000000074670000-0x00000000746BF000-memory.dmp

    Filesize

    316KB

    Download

  • memory/2372-30-0x000000007EF50000-0x000000007EFAC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2372-34-0x0000000000400000-0x0000000000407000-memory.dmp

    Filesize

    28KB

    Download

  • memory/2372-36-0x0000000074B40000-0x0000000074B4C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/2372-35-0x0000000074280000-0x00000000742BD000-memory.dmp

    Filesize

    244KB

    Download

  • memory/2372-37-0x0000000074740000-0x0000000074748000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2372-42-0x0000000077100000-0x0000000077106000-memory.dmp

    Filesize

    24KB

    Download

  • memory/2372-41-0x0000000074670000-0x00000000746BF000-memory.dmp

    Filesize

    316KB

    Download

  • memory/2372-40-0x00000000746C0000-0x00000000746C7000-memory.dmp

    Filesize

    28KB

    Download

  • memory/2372-39-0x0000000072940000-0x0000000072A93000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/2372-38-0x0000000074BB0000-0x0000000074CA0000-memory.dmp

    Filesize

    960KB

    Download

  • memory/2372-33-0x00000000742C0000-0x00000000742D7000-memory.dmp

    Filesize

    92KB

    Download