Overview

overview

5

Static

static

3

103e456534...20.exe

windows7-x64

5

103e456534...20.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    117s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 09:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    103e4565342dcde6c4aa0a81ad16b8fd797b17528627f507cde2409d34ca4d20.exe

  • Size

    14.6MB

  • MD5

    12e30b2c0cde933cccae730034098447

  • SHA1

    ea3283a99a734d351f80e5ab93fe304140f011fb

  • SHA256

    103e4565342dcde6c4aa0a81ad16b8fd797b17528627f507cde2409d34ca4d20

  • SHA512

    54875c7207cc606da67ad5880f422a891d703c8eadb9b2e873c3bd6c599e374f100f6fd1ac31ebdf4f8b1aeced57567904145c0db5e3c13785fe4c3b6deaa319

  • SSDEEP

    393216:6BWiUSjB3zdJTe/IkfVl/L4Kyyk7+mwxOaaW:6BWgjB3S/IoHEK2NaL

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\103e4565342dcde6c4aa0a81ad16b8fd797b17528627f507cde2409d34ca4d20.exe
    "C:\Users\Admin\AppData\Local\Temp\103e4565342dcde6c4aa0a81ad16b8fd797b17528627f507cde2409d34ca4d20.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2016-1-0x0000000000400000-0x0000000001E51000-memory.dmp

    Filesize

    26.3MB

    Download

  • memory/2016-2-0x00000000023C0000-0x0000000002567000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/2016-3-0x00000000023C0000-0x0000000002567000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/2016-0-0x00000000023C0000-0x0000000002567000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/2016-4-0x00000000003E0000-0x00000000003E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-6-0x00000000003E0000-0x00000000003E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-8-0x0000000000400000-0x0000000001E51000-memory.dmp

    Filesize

    26.3MB

    Download

  • memory/2016-9-0x00000000003E0000-0x00000000003E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-10-0x00000000003F0000-0x00000000003F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-13-0x0000000000400000-0x0000000001E51000-memory.dmp

    Filesize

    26.3MB

    Download

  • memory/2016-12-0x00000000003F0000-0x00000000003F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-15-0x00000000003F0000-0x00000000003F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-20-0x0000000001FF0000-0x0000000001FF1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-18-0x0000000001FF0000-0x0000000001FF1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-23-0x0000000002000000-0x0000000002001000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-33-0x0000000002030000-0x0000000002031000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-38-0x0000000002040000-0x0000000002041000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-41-0x00000000020D0000-0x00000000020D1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-43-0x00000000020D0000-0x00000000020D1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-40-0x0000000002040000-0x0000000002041000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-45-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-36-0x0000000002040000-0x0000000002041000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-46-0x00000000020D0000-0x00000000020D1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-35-0x0000000002030000-0x0000000002031000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-56-0x00000000020F0000-0x00000000020F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-59-0x0000000002100000-0x0000000002101000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-57-0x0000000002100000-0x0000000002101000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-62-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-63-0x0000000002100000-0x0000000002101000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-65-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-64-0x0000000002110000-0x0000000002111000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-61-0x0000000077CC0000-0x0000000077CC1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-54-0x00000000020F0000-0x00000000020F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-67-0x0000000002110000-0x0000000002111000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-52-0x00000000020F0000-0x00000000020F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-69-0x0000000002110000-0x0000000002111000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-70-0x0000000002120000-0x0000000002121000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-71-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-51-0x00000000020E0000-0x00000000020E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-49-0x00000000020E0000-0x00000000020E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-47-0x00000000020E0000-0x00000000020E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-30-0x0000000002020000-0x0000000002021000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-80-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-82-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-28-0x0000000002020000-0x0000000002021000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-25-0x0000000002000000-0x0000000002001000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-92-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-94-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-101-0x00000000023C0000-0x0000000002567000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/2016-103-0x0000000077CC0000-0x0000000077CC1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-112-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-118-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-127-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-130-0x0000000077CBF000-0x0000000077CC0000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2016-142-0x0000000003AC0000-0x00000000043B8000-memory.dmp

    Filesize

    9.0MB

    Download

  • memory/2016-145-0x0000000003AC0000-0x00000000043B8000-memory.dmp

    Filesize

    9.0MB

    Download

  • memory/2016-174-0x0000000000400000-0x0000000001E51000-memory.dmp

    Filesize

    26.3MB

    Download

  • memory/2016-175-0x0000000003AC0000-0x00000000043B8000-memory.dmp

    Filesize

    9.0MB

    Download