Overview

overview

8

Static

static

3

cf5fcf5aff...ed.exe

windows7-x64

8

cf5fcf5aff...ed.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    141s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10-05-2024 03:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf5fcf5affca1fa9db3b5054531b4bfe3b6afb1e15d8f46b99378426868422ed.exe

  • Size

    8.9MB

  • MD5

    60c7516637780453290aec2001519f2b

  • SHA1

    3e7a8581ef4aedfabc187b2452c4707d0ed69735

  • SHA256

    cf5fcf5affca1fa9db3b5054531b4bfe3b6afb1e15d8f46b99378426868422ed

  • SHA512

    040b9d285e2c5de3313f08ac312ad6590511c763a6402f4d953277645aadb37b3b0b0aa6bbb1cc6f571171a7f2005c2c2472abb9f85d181ca7308aec90566267

  • SSDEEP

    98304:xZGeKJXtebYOSTF2K7XkTKdzOJDb4v+qzWQQMIHp7w0r5DdQwNSH6uE2Tp2m/e:PoJ/2K7XHwN0v+qSJ7P5Ddh0HtQee

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\cf5fcf5affca1fa9db3b5054531b4bfe3b6afb1e15d8f46b99378426868422ed.exe
    "C:\Users\Admin\AppData\Local\Temp\cf5fcf5affca1fa9db3b5054531b4bfe3b6afb1e15d8f46b99378426868422ed.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2236
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=1340 --field-trial-handle=2236,i,5367110156796017614,12594004256180761011,262144 --variations-seed-version /prefetch:8
    1⤵
      PID:3160

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
      Filesize

      6KB

      MD5

      f0789857cb9f55b42cfd92346ab584cf

      SHA1

      c18f72b36925d8281cd63e373edcadea5ae7fde8

      SHA256

      4fd7234c6abdb9dd931a9f78ff91d0543a0611639858700cf9b9a592a935bc45

      SHA512

      4520e6b3c697b0c243161044689ea516181d6f7b9cf3d598700a5a60becbc9e5e8b9c0a60b06f75c399a56e8a4733657f5a451529e0973d356ad2d4895f1195f

      Download Submit

    • C:\Users\Admin\AppData\Roaming\Yandex\ui
      Filesize

      38B

      MD5

      c9adb588059c87bd6bd23800b131e8f1

      SHA1

      cd63cef3bf2252425aed6987f89b5d671061d031

      SHA256

      32f4b2974abf9499cf92a691c92e79435ac67af01cfd80d4cfe6aedcb59a8780

      SHA512

      d9f2c881326c78308184b24bb1553d9fed7d95a4ff99057408442ae52f5b0c22aed1dc3dce56a5ce3613e3109ab763eab77d35d636be1a24a82b5f9e0402a3d4

      Download Submit