Overview

overview

3

Static

static

3

2c8bb0166e...ea.exe

windows7-x64

1

2c8bb0166e...ea.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/06/2024, 03:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2c8bb0166ea1c61fe2096e2d1e43e73c77865c43c7bb06edc9b500c90a5690ea.exe

  • Size

    9.0MB

  • MD5

    ab7b3835f02a491ef3c0e1db68792b4d

  • SHA1

    3f308089ecfad8110a6993f4a071730213471535

  • SHA256

    2c8bb0166ea1c61fe2096e2d1e43e73c77865c43c7bb06edc9b500c90a5690ea

  • SHA512

    c9a21835fc1593d4428a5829ece3e0920c471eea1f6d020c3a39a842cd422ae629017b810fc059c5fac8c829c15edeeaf455bac49d64b8cd68343a1fd98c28e3

  • SSDEEP

    196608:oXOFdUktV6HVBTW3WD4fcMqgNjs6butm+9ydVyl+Cm0XCZuBBL6BP:ntgHVBuaBgtKrcCm01BJ0

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2c8bb0166ea1c61fe2096e2d1e43e73c77865c43c7bb06edc9b500c90a5690ea.exe
    "C:\Users\Admin\AppData\Local\Temp\2c8bb0166ea1c61fe2096e2d1e43e73c77865c43c7bb06edc9b500c90a5690ea.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\2c8bb0166ea1c61fe2096e2d1e43e73c77865c43c7bb06edc9b500c90a5690ea.exepack.tmp
    Filesize

    2KB

    MD5

    37b0b2e9be2cea0f13f8b015b7d1227d

    SHA1

    7937befafda457544a5b846eafa70a4a5866a582

    SHA256

    3ca94d5dc26929074df3419bf44b29755a54d983f0d9c13e3c693e99addfd0dc

    SHA512

    e321a73e5e4323d60085052412b598183a78702ed61dbc0fcd5a232ecf8b786fbe14071b0244b1ff328f6ae07e1baaedd539ce3981c9c629bcf2d7a818c1ce47

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\464442c98f50efbc71505862b56bcbbd.ini
    Filesize

    1KB

    MD5

    4d21e0b5ce0f1c2610b92e914b4a8c1f

    SHA1

    0f931cf2d516056d100ec6204ed5f09f40cd3226

    SHA256

    490690d3ea0ad97f03f94cfd43b8f8ddefc973d94d359149d3f5ab8c872e0ab9

    SHA512

    2e58fc1974b8c42387316a7948c42b1b82de5b4debdf911804efef07c34a38e9257ce4e2185a94d8e873dc67d24d388e3a3e6efe89a812d206a81e11693f2f2c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\464442c98f50efbc71505862b56bcbbdA.ini
    Filesize

    1KB

    MD5

    630cd789a7f1c7b902f75037491cac8b

    SHA1

    ce2167cebfef53a7e5cf51d1ba4390999c52fdf3

    SHA256

    a8afd1cc424241f41d6966b9dd2e2e2d884912b4f67792ca9f1f759a948eec9c

    SHA512

    e532eeb9b1d52cc56f0f059a12c1ad6fdee50dd679ed6fe7c662f197cde154402a051db25b2b80f26e153a0ed525f57dbc56e711ef1208b7a475b388ba711e77

    Download Submit

  • memory/1792-0-0x0000000000400000-0x0000000001CF8000-memory.dmp

    Filesize

    25.0MB

    Download

  • memory/1792-1-0x0000000003A80000-0x0000000003A83000-memory.dmp

    Filesize

    12KB

    Download

  • memory/1792-2-0x0000000000400000-0x0000000001CF8000-memory.dmp

    Filesize

    25.0MB

    Download

  • memory/1792-323-0x0000000000400000-0x0000000001CF8000-memory.dmp

    Filesize

    25.0MB

    Download

  • memory/1792-325-0x0000000003A80000-0x0000000003A83000-memory.dmp

    Filesize

    12KB

    Download