27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48

Analysis

max time kernel
127s
max time network
118s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
04-05-2024 20:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe
Size

7.2MB
MD5

17f2c6639488273ae39eaaaefc9ac922
SHA1

c22f42e0a920fffbaf5b4f27fae1c41cdab0ec7b
SHA256

27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48
SHA512

64b3eb517fa4e86c29c8ae04330d316ee18145cdcbc8b03968456e757bd12880edc1aef70690380d5b069966478089ad127ef059a2ff66d6d225b50f72340fe6
SSDEEP

196608:mJAhrFpjSnhchpwaoUy9uUdfSCpmiADei6Z8xs2u:6AhrqhcBoUmdd6MmiYei6Z32

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 1 IoCs

pid	Process
2308	27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
2308	27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe
2308	27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe
2308	27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe
2308	27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe

C:\Users\Admin\AppData\Local\Temp\27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe
"C:\Users\Admin\AppData\Local\Temp\27a6a54b8517f0e275805794f4da5a2ea181afc77d5f511ed77f9543d22e5d48.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
PID:2308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\Documents\Sdouwan\Jilu.ini

Filesize
216B

MD5
49a38e3af6b9b55b5ad5c39b97971d4c

SHA1
2a864c6f18e0be73501e381fcc0c27a2e8aebac7

SHA256
6ac014e5694674f837afed2460b099dc157329d9ee1ef4d96b063f2df5856d31

SHA512
404b793a15a30442fd92f171868f5e7e7530bbf13e4bc38198a5ed604e2cdf7eb8cbe363bd1b5becdaf0fd31052c250addf026c6a8784562a6bf0e376407b68b

Download Submit
memory/2308-12-0x0000000000290000-0x0000000000291000-memory.dmp

Filesize
4KB

Download
memory/2308-24-0x00000000002B0000-0x00000000002B1000-memory.dmp

Filesize
4KB

Download
memory/2308-31-0x0000000000712000-0x0000000000B74000-memory.dmp

Filesize
4.4MB

Download
memory/2308-36-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-22-0x00000000002B0000-0x00000000002B1000-memory.dmp

Filesize
4KB

Download
memory/2308-37-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-17-0x00000000002A0000-0x00000000002A1000-memory.dmp

Filesize
4KB

Download
memory/2308-14-0x0000000000290000-0x0000000000291000-memory.dmp

Filesize
4KB

Download
memory/2308-29-0x00000000002C0000-0x00000000002C1000-memory.dmp

Filesize
4KB

Download
memory/2308-9-0x0000000000280000-0x0000000000281000-memory.dmp

Filesize
4KB

Download
memory/2308-7-0x0000000000280000-0x0000000000281000-memory.dmp

Filesize
4KB

Download
memory/2308-5-0x0000000000280000-0x0000000000281000-memory.dmp

Filesize
4KB

Download
memory/2308-4-0x0000000000270000-0x0000000000271000-memory.dmp

Filesize
4KB

Download
memory/2308-2-0x0000000000270000-0x0000000000271000-memory.dmp

Filesize
4KB

Download
memory/2308-0-0x0000000000270000-0x0000000000271000-memory.dmp

Filesize
4KB

Download
memory/2308-34-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-58-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-30-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-19-0x00000000002A0000-0x00000000002A1000-memory.dmp

Filesize
4KB

Download
memory/2308-38-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-39-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-40-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-41-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-42-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-43-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-44-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-27-0x00000000002C0000-0x00000000002C1000-memory.dmp

Filesize
4KB

Download
memory/2308-52-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-53-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-54-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-55-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-56-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-57-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-35-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download
memory/2308-59-0x0000000000400000-0x00000000012AC000-memory.dmp

Filesize
14.7MB

Download