Analysis

  • max time kernel
    118s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-03-2024 15:56

General

  • Target

    dc06ac13dbaa78b63d9d5ed3bc320325.exe

  • Size

    85KB

  • MD5

    dc06ac13dbaa78b63d9d5ed3bc320325

  • SHA1

    da476b6368b98df50d8198b8d5ad8370fb115511

  • SHA256

    7b9b1a64a811390acb3384677420ed0508176891723708ac43cf980bf40c8701

  • SHA512

    5deb542d64711a86f71bfaa1fc53a3c5b5c7165d2135a49366ba575bd13b326caa491075a5ad13485bbe77b3680a3ed83f692fffec643d88f27c5545b4d4842a

  • SSDEEP

    1536:wC1UFncLzy+yYoE2qhpmryEnJwcY0vFnh:j1UFnMzy+YwhpmryEnJwcY0Nh

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Installs/modifies Browser Helper Object 2 TTPs 4 IoCs

    BHOs are DLL modules which act as plugins for Internet Explorer.

  • Drops file in Program Files directory 2 IoCs
  • Modifies Internet Explorer settings 1 TTPs 3 IoCs
  • Modifies registry class 12 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dc06ac13dbaa78b63d9d5ed3bc320325.exe
    "C:\Users\Admin\AppData\Local\Temp\dc06ac13dbaa78b63d9d5ed3bc320325.exe"
    1⤵
    • Loads dropped DLL
    • Installs/modifies Browser Helper Object
    • Drops file in Program Files directory
    • Modifies Internet Explorer settings
    • Modifies registry class
    PID:1492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Program Files (x86)\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL

    Filesize

    56KB

    MD5

    fc7fb80d01d6d4c66ea91e9feebc2800

    SHA1

    488dd6c91963c1d5d4a8f82949f78d4e2b137297

    SHA256

    48cb732a3c288fcee8b33045b8a58622fd3dfcd56cfd9b730d90fa154207de92

    SHA512

    60ea3137e514e8bc8d8fb9d93da58bde11f8507d54bcb94bc6a69095d224a9236c086b7ea288d0d5a3c3b52aa9f16897601a2dbfde09a59cf5338640c9e7232a