Overview

overview

9

Static

static

3

db79a64e11...de.exe

windows7-x64

9

db79a64e11...de.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/05/2024, 22:44

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    db79a64e1110bafb3e9140d8b9ace86232cb65552999d22e488ede1c0fdee2de.exe

  • Size

    9.4MB

  • MD5

    e3aa62cf37d46a73685d810dbaafd87e

  • SHA1

    0bf74827aa7f64ea053cd4e8b67487924e67f432

  • SHA256

    db79a64e1110bafb3e9140d8b9ace86232cb65552999d22e488ede1c0fdee2de

  • SHA512

    65290e2aaf81b17b0b461c3110a23626333f364a9bfeb1b34e298069fe7e0a2486b6a4be3f041591f713712727f1eb8c69195de8a524c7ca444858c683a766bd

  • SSDEEP

    196608:8MD+cpvJ/4H3nmghWoa/fsysMF4JD85lZkjimCdoVPUjWU5FywGdlnBc:8MFgXnU7sElZyfeAUaU+wGdlBc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\db79a64e1110bafb3e9140d8b9ace86232cb65552999d22e488ede1c0fdee2de.exe
    "C:\Users\Admin\AppData\Local\Temp\db79a64e1110bafb3e9140d8b9ace86232cb65552999d22e488ede1c0fdee2de.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3112
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=3760,i,13035806169561352434,1332896185314862791,262144 --variations-seed-version --mojo-platform-channel-handle=4120 /prefetch:8
    1⤵
      PID:4540

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
            Filesize

            652B

            MD5

            84a546776aa71c861665232bb618b151

            SHA1

            d477d560171769a47bd675330c0623073dfa79e5

            SHA256

            5ca366653898d56e35df523a952b892e0767f9c5037de94e02b21b1af41a39ad

            SHA512

            8af4f2e6dd9797cdfcb8b4576efc22fb41f306a255fe5d19ad5178cdc38f411cbbfeb0a20a343c341f7f5a24ce030ab0f2dfcd424167098ae97a3d3284911c88

            Download Submit

          • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
            Filesize

            4KB

            MD5

            7e12e216472306f0ebb6889cf5ffe555

            SHA1

            20da2f258b924e756ed21c13cfed7394bff2b3d5

            SHA256

            22707dd546bf1e56a8b7dff256dacdb064d465b9e3451027df5888333988ebe2

            SHA512

            3d039856cf5f7cbefd62a848e48daf5083f821d3db7b514c95288facaccc82aa6471d566999507ca98b23b9eadff18aecc26f5b93be1e8feaa7f141f5eb13139

            Download Submit

          • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
            Filesize

            310B

            MD5

            5e18d9617dbf4da8ae077ff9c907b115

            SHA1

            b2b6a579db6d923af310f951f5193e11019f993c

            SHA256

            b577879f3ae6569ed0c4684b8e9d356fdf81cc75f032c68fc43c01da557fe766

            SHA512

            898379636cdfbc6a5b360770430afa6bdde7085140a6e90197e33d1f80c4b89cf335e35e0ba49104facbec454ef95bef48f6a85588392b2dcd4793fa1fcae876

            Download Submit