Overview

overview

8

Static

static

3

901a2b7be8...5d.exe

windows7-x64

8

901a2b7be8...5d.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    93s
  • max time network
    120s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/02/2024, 20:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    901a2b7be897521299cfaa3dac71375d.exe

  • Size

    408KB

  • MD5

    901a2b7be897521299cfaa3dac71375d

  • SHA1

    6c945eaae872bb422a95c9eb6f198c8088084a5d

  • SHA256

    f34a4301716f74eb1e719ab4473403d9533ef70c817bda8fce8af8cc55980b4e

  • SHA512

    ae7513a4f671ccb96f37db6710694615947ecf60d2dbfdf22da12d88cc30d8deccc6349206d53a76bc1ec1be1b5f228d0fad436d7077f5551d2eec9eac86ce86

  • SSDEEP

    12288:s7E21H4dt/iqzBUQhSWJQrSo77byzxDnHuxpfEuXRwjwxnU/:c4dtPzBRVQr7azxDnHuXffRwjwy

Score
8/10

Malware Config

Signatures

  • Drops file in Drivers directory 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Drops file in Program Files directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\901a2b7be897521299cfaa3dac71375d.exe
    "C:\Users\Admin\AppData\Local\Temp\901a2b7be897521299cfaa3dac71375d.exe"
    1⤵
    • Drops file in Drivers directory
    • Drops file in Program Files directory
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1120
    • \??\c:\program files\Realplayer\Trip\Multimedia.exe
      "c:\program files\Realplayer\Trip\Multimedia.exe" "33201"
      2⤵
      • Executes dropped EXE
      • Suspicious use of SetWindowsHookEx
      PID:3320

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Program Files\Realplayer\Trip\Multimedia.exe
          Filesize

          408KB

          MD5

          15857b0bc1c80dfc289f161fbb6a56b4

          SHA1

          830f1880d51eff91404b5889ae2b6c907acc1b12

          SHA256

          2f598e2d723184c5a1fd11646ef4ea2f353cb456fff0d00712fe66be649e56f7

          SHA512

          91a983461897bd4f82c756b0698d2543a1b7292707b424f6ddc2c60fc6b3aa4a9d4632256e270067a47ba3da23f9c8c320647195a538b73d2cc59af133e2ef48

          Download Submit