Overview

overview

7

Static

static

3

cbd074ec33...ac.exe

windows7-x64

7

cbd074ec33...ac.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-03-2024 15:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cbd074ec33aa1d5c3b4d26f3d1f5f1ac.exe

  • Size

    21KB

  • MD5

    cbd074ec33aa1d5c3b4d26f3d1f5f1ac

  • SHA1

    5cc1b012554a05d79eec9362a5104a3fceab6e64

  • SHA256

    eeb0f9d9beaec827f449ad707b09635d48d14949d13cf1f2f003647131c5ce49

  • SHA512

    c12bb7d764426faf6b1c6a70b335d530edaa196e194f3b4c686169ba50c02d906462ee28cd8701b8e5371a59d93c0e4ad4ba1e9da02ee07d99a8d8922e8cbb82

  • SSDEEP

    384:O1XLUPDD0RvYGrzvPUfDsW3sLIoysH1ukZb0Yj8OGJ3ptMSMA:wUbD0RXjasks8oJVuXJDMSMA

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 3 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\cbd074ec33aa1d5c3b4d26f3d1f5f1ac.exe
    "C:\Users\Admin\AppData\Local\Temp\cbd074ec33aa1d5c3b4d26f3d1f5f1ac.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\WowInitcode.dat
    Filesize

    24KB

    MD5

    c48ab67d5d3cae3ae2c32dab0ac6f9c6

    SHA1

    5479851bc5ce25d04e38aa23e7889760a0eb9b60

    SHA256

    138ca1525dc2026751e5ce046d977cdcd07c91c337cb27c2560f3fab25fdd582

    SHA512

    1a1e90e37692f58c31156b6e2e22101d7c5b8a77202c528a4bdc6de1482d49ae33337d27d74a69cea9ad61dd237d14624cdcf18e87e25a06f7e00d7732ca316b

    Download Submit

  • memory/1424-0-0x0000000000400000-0x000000000040E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/1424-6-0x0000000000400000-0x000000000040E000-memory.dmp

    Filesize

    56KB

    Download