34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074

Analysis

max time kernel
121s
max time network
125s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
11/03/2024, 14:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074.exe
Size

4.7MB
MD5

ce96ed5927f6c4fca75041b1a62e3534
SHA1

f3c5d06d4bd25cf7ca9222d61cc00cb107dd3ad9
SHA256

34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074
SHA512

4569475d54a6cd6f29335c0514a6ef8f4d0745f18408322ddd77a6cedefe7e07c57674058b71f8fb62b8e4a16e024daa8a8b4919925715d18712098c51999ecf
SSDEEP

98304:shIHjWibmorLobjYXzZpvF1Ff7PKdzOJDb4v+8lz:vWibmoFzZpF7SwN0v++

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Loads dropped DLL 2 IoCs

pid	Process
2224	34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074.exe
2224	34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2224	34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074.exe

C:\Users\Admin\AppData\Local\Temp\34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074.exe
"C:\Users\Admin\AppData\Local\Temp\34707dc2688f6ee88fdedeee683c94ff2cb9cd4040e58e4649c2988eba5fb074.exe"
1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
2KB

MD5
283b294d7b9d7b1c235261038f2a20c1

SHA1
6b86b629d469436dd253b9a0fda5c7df216f7f84

SHA256
aee8df74ee89bea34a777003b0acaa76fb2e676c3e0fece220e6259281000b3b

SHA512
e9ae0f75cf5b761c8b55d5a0b838cb63d024bb37c2ddfdc4612509745bb71eb368b00ad64864f14bc218a2720e7150507dd046feb524cf23b6ad0cf50db78038

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
7KB

MD5
a923284317ad6dd46f458c29b7e055a7

SHA1
d17c54297498655963ce04c1d45bbc14c50970c1

SHA256
ab74ff866884e84f7acbc642d855077b58c55731cd3a3cd2fe68fada168eb75e

SHA512
ad04bc159ac68ebbf9303b883e9751147bd6406228d9ff187daf5d35d823d4e175e467da1033805e8546892020e4e4f1f8be70db0645b879222ac43eb41ca3ae

Download Submit
C:\Users\Admin\AppData\Local\Temp\lite_installer.log

Filesize
1KB

MD5
38162b9fed70c16e31dc658fffa2fe5d

SHA1
12318b5ffbbbc1427085a80870f6dc33d022509e

SHA256
5c2e5f759629dba06dcab88c9d3751e7566fee6446090c6c864e6882592fa18d

SHA512
651dbad529677ca64d371f2836c0fb9e19ea1b3d7a0faed057ffa14a076672835add316f709f057496b82c2218ea857653a20e265a8cf00acac76841553c6722

Download Submit
C:\Users\Admin\AppData\Roaming\Yandex\ui

Filesize
38B

MD5
8e6ee2d26ea4e8fc33bfb770676cfced

SHA1
37cf253dd20b719f2b8a5a0c80fb31c7f80b1e9e

SHA256
10035335e18be77750e54acbdd3b34df2494e73e0d44ca414b291b5d8b51d6be

SHA512
a4f65ce5112bbeaec25a374221daf036b9ff673e05272675af23d9b51d15b944b828054a73dbe6cc3bae6f20915aa9bd6e75706cb12e4338cc6873003af6a72a

Download Submit
\Users\Admin\AppData\Local\Temp\yb6068.tmp

Filesize
7.7MB

MD5
5255cb0f25c42b5ebc9f9a88bca6a8f3

SHA1
cd9766c00c81dc331d70c2d8b0a1d6bdef656ba6

SHA256
f1ecf94c7121ca9767d281306717e54081873a1a3377c6f255bad1ddf875b2a0

SHA512
39e2389b555a3cc27fd6904988b6c365645cc15323d7b86672bcf1eff6704519a4c204bb4d7052ad4f6b5cd8cd0358168722bd162ce9ceb39b35882ae763fe3c

Download Submit
\Users\Admin\AppData\Local\Temp\yb6068.tmp

Filesize
9.8MB

MD5
a7741c0577adce50a284dba8caa33238

SHA1
71433e3c7f44256abb5cd4355266e379ff01a3af

SHA256
49fc7b92c3020a3be154230713c410bcd5f37a4e92cdb2b980d77fe0c4909f76

SHA512
930d2953062c0028391cfc929ff10675454127aab0293411db653965c083f893a8ca6e6c28beb6f609143d14cd977d5824f998650578cf3f24827dbb900ef29a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads