Overview

overview

7

Static

static

3

5f06a605a2...18.exe

windows7-x64

7

5f06a605a2...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDIR/terms.rtf

windows7-x64

4

$PLUGINSDIR/terms.rtf

windows10-2004-x64

1

$_14_/$_14_/$_20_.exe

windows7-x64

1

$_14_/$_14_/$_20_.exe

windows10-2004-x64

1

$_14_/Uninstall.exe

windows7-x64

7

$_14_/Uninstall.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20-05-2024 12:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $_14_/$_14_/$_20_.exe

  • Size

    2.7MB

  • MD5

    64133076cb7a7bb2fcc79d5a3f1a1424

  • SHA1

    845af69b14906476e2a17e411d7d024e820f3589

  • SHA256

    2d4a496260a45beafb59f90c243031a58dc2b34de7824e26c4365c90206dfa34

  • SHA512

    0544c15e03d24f4b459479943cd2612920b7c15285ecaf16cb67b0fa4361f747a51507cf9616064eadff9adeda019d1655a648bcf25b9d51e44e981e5f16a021

  • SSDEEP

    49152:/HcCyPpdiaNDG+hu+tUzc1qaXCwL7v+AqpH+/uWdMyWjevlODyYX45U4pn:/HcCWSScc19tL7upH9Do1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 1 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\$_14_\$_14_\$_20_.exe
    "C:\Users\Admin\AppData\Local\Temp\$_14_\$_14_\$_20_.exe"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3088

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads