dba1033247332b6e47e8a7bcd91ff17c6ee5c57308e9c719e0698005199bd3a5

Analysis

max time kernel
24s
max time network
16s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
14/03/2024, 16:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Router Scan v2.60.exe
Size

3.4MB
MD5

5c72219a05c35b986c2ba9868c3267cc
SHA1

f61c5da67ae6454053d604a00cfffd484712869d
SHA256

dba1033247332b6e47e8a7bcd91ff17c6ee5c57308e9c719e0698005199bd3a5
SHA512

56b0c7cba0f95992c87ebb2f0724c5c3106c947fe894d2944e18860199557c4f49c769feb66741b9f56974c04074d13594cbe7670a1da9df6a655c335feb1b62
SSDEEP

98304:Jh18M9J4X48EjVn3Bs6umWiKoI7JR0mT2T:JH8QM48qZ3BhuToI8q2T

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main	Router Scan v2.60.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1976	Router Scan v2.60.exe
1976	Router Scan v2.60.exe

C:\Users\Admin\AppData\Local\Temp\Router Scan v2.60.exe
"C:\Users\Admin\AppData\Local\Temp\Router Scan v2.60.exe"
1⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1976

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\help\ru\exploits.html

Filesize
13KB

MD5
017ff9502af2803e2040bf150e147d68

SHA1
e1080af576af678fe59d609ebc7975cc555c3642

SHA256
a11a8dc24f1aa8ea6ad4ea04a6900b44251da89818fba638fda1bbd87b8971e7

SHA512
37887ad310c9ac21d36e04ce901eb740dff236769b13b9b85bc259fbf7877d45e182c6da31db59c3dbb28b7f76bba05efff21aec7b3aa6333e027801ae90ccaa

Download Submit