Overview

overview

8

Static

static

3

99d6a8dbfc...8a.exe

windows7-x64

1

99d6a8dbfc...8a.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    139s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-04-2024 15:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    99d6a8dbfc1cb6c7afb175adca19c4de0060757776e89ef4c22ccc12efcbfa8a.exe

  • Size

    3.2MB

  • MD5

    b7c8ce786e2a12d6ad42727505a83aa2

  • SHA1

    055367d2ebd4128baa031c700e3be631c3c66054

  • SHA256

    99d6a8dbfc1cb6c7afb175adca19c4de0060757776e89ef4c22ccc12efcbfa8a

  • SHA512

    67fc9cca4fbdffb35a4a628b9bc955d0e2ef78b59c5e894669d8f2a759a4a3b21d6b19db0aeeb197c7b107f5a0dee18a278948d6539d7fba20b4b8c836fa92c0

  • SSDEEP

    49152:KogabJFmb6kvAAM+pz1ZbCbilWq8n1qODmsOqy1ttBZo7gsmj+r5u8Qe:KVabab6UI+Z1ZbTa1qOkzZOlJK

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\99d6a8dbfc1cb6c7afb175adca19c4de0060757776e89ef4c22ccc12efcbfa8a.exe
    "C:\Users\Admin\AppData\Local\Temp\99d6a8dbfc1cb6c7afb175adca19c4de0060757776e89ef4c22ccc12efcbfa8a.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    2e3bc5fa5c9a0db1da9fdd0fd4fba023

    SHA1

    800ea65e548cfb9add52933efc19bf753b3d21c7

    SHA256

    43a1777c6bb62e45b506da1af12cfa7452be0fe654272fd0bfa43bf67bb7a55a

    SHA512

    ba6907dbcee1c1455a4b467211ab407c9c9f602a28593815d24def3981089f70104ab7b8449d80b66a1e7e11d5ab8b1aa1b5f281a2ce7ead52336ee4f7acb9ea

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    7KB

    MD5

    ac5b84196f1012c3f31f650a58b4ce0d

    SHA1

    d126f4f2945242b9ae2eebcb1e59881b37a661c6

    SHA256

    070019505c0f1bc2dd92fde6eafa4ddc659b4f094d84a83a87f7d0347a2e61cd

    SHA512

    86f25e65c6367bd615c2bdaabfeb2a30b3a69c497a45592417d18ef2d17a63dee94dafa9b2eaac670dd77832ddd9f937ecd3e226f2a8e8d8367421fce672590f

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    63a2f9e95151e9262686d8dfd6491654

    SHA1

    d4dd224b37d997cc4f6b741532aa4fa3ea6390ce

    SHA256

    b67ff6038afa0f71358e44682d346d9e9e14515383b1fa1d88f2b4ecc321301d

    SHA512

    5291db2b81a785b7dfde4f0ad16233fe2f3e034c88f94f1a85d80cd14694bdc822acea808ebca9b388ba11d723957503a992f738ad392843fdbf15089ae0c05c

    Download Submit