Overview

overview

9

Static

static

3

6b002fe692...6d.exe

windows7-x64

9

6b002fe692...6d.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/05/2024, 15:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6b002fe69266700b02243ae421158fb13f3b98447dd1938bcd19657b89b4806d.exe

  • Size

    5.7MB

  • MD5

    3d22bc83bea88b7dbb31370e7b644b66

  • SHA1

    94ed8069973577ee41ee62f32db6290558750cfb

  • SHA256

    6b002fe69266700b02243ae421158fb13f3b98447dd1938bcd19657b89b4806d

  • SHA512

    adb345dfe3c1eb606ab7b812fff4d94a2cb43cbe7093826fe0e634c1324a34fcedfd1aed910e1521f6e916905a088c194c9ea828fa88f170b5942e4042cd2ea4

  • SSDEEP

    98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7NmVkVd:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85i

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6b002fe69266700b02243ae421158fb13f3b98447dd1938bcd19657b89b4806d.exe
    "C:\Users\Admin\AppData\Local\Temp\6b002fe69266700b02243ae421158fb13f3b98447dd1938bcd19657b89b4806d.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    652B

    MD5

    fc6ded546eb981a5e2691f5c0778efbc

    SHA1

    b57e5fe7e2e3afe51b52d26e8c4a0514c9893c01

    SHA256

    6503a0ac4ebecab75deaded00cd2d536ad19cc67449f16cf470f58d3995bfa25

    SHA512

    9a2b172423c2afc10dd0e1153ec65f79804761dba436664542cc19153e8a274be05a281043cca855e44c35b55fd6475dd8ee881220aeb8b588cd537f66ade57c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    310B

    MD5

    32e30de6c3378ef4370b5847ed8a4090

    SHA1

    d1448d0a04210c95d791e729bbee79e4a037199e

    SHA256

    86f79b630554769fb1b9f022088fca5c67291bb6d0f6c84909b8e857a73c2888

    SHA512

    a694b1cca780db82c8e410e5b27883f1b1d9ff88118f9a89f103536151b9dc88388792bb5ded17f0b2f85e5d68fc6c247d9224444dd3e8c053575a4681da527d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    14KB

    MD5

    791d99fa3f1bf76b5035dfa39a5284a6

    SHA1

    5aab3157f66b0eee8fa07c3362a3e99939ebebd9

    SHA256

    efb17c419c1e3bea6253edcae5512ece3907b5f897d159fe9d43af082dffa6c9

    SHA512

    d961081421df737f6c4d86bfb095496e79a9ed64ab1ef58b15019136246d5c1f3571587a6a2b71c9ed7119cfaa5793ec647c90cf65dc6fad37bf3c2e83c82db8

    Download Submit