Overview

overview

10

Static

static

10

9311f9bbf8...47.exe

windows7-x64

7

9311f9bbf8...47.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    93s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/06/2024, 01:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9311f9bbf8d4203d216e45c547d3c40073048d15cd1bd4107a1d51daa3602e47.exe

  • Size

    6.3MB

  • MD5

    3357bb9ff04c3171af213f02c1b75034

  • SHA1

    88e236658287002bd93210ba8c86e275c8508cbf

  • SHA256

    9311f9bbf8d4203d216e45c547d3c40073048d15cd1bd4107a1d51daa3602e47

  • SHA512

    cfadd5000ef03aba20c208662e3e53b688b76c355f804741153ae0a9f1b28cc82cc295345dfbea8a491229bc041dbea9274487dc1bc9fd2c794ff3e96a4626b5

  • SSDEEP

    98304:aJXND9Xorl4TuyQfpjM/7ZbPZN13MpiRtrKieE5ZevkJprO:Ssk8pY/7ZBPVKpKevWpq

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9311f9bbf8d4203d216e45c547d3c40073048d15cd1bd4107a1d51daa3602e47.exe
    "C:\Users\Admin\AppData\Local\Temp\9311f9bbf8d4203d216e45c547d3c40073048d15cd1bd4107a1d51daa3602e47.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1564

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\E2EECore.3.3.9.dll
          Filesize

          10.6MB

          MD5

          50c266e46ccf9bc8956279f78d51f205

          SHA1

          0ba5b98a91a9a019cd9b87cf01796c65ee6a0839

          SHA256

          c58e066a293ff260037487d37e37bf3d890c16383d817c7573dab51c514cbd00

          SHA512

          7350a82820faeba3172fad3d87b04c6a2967b797a321a78a53e7156c37fed4661a66d2f78e2f3ddbcbc0d10a56f5d761f7eb761f05d2841568b34841c17e0d37

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\iext1.fnr.bbs.125.la
          Filesize

          544KB

          MD5

          7568384741228f507442fcbfd2ba4d0b

          SHA1

          e4aa3772f6022bad7f4d1936be60f7266086cc5e

          SHA256

          1a90ed1033b4efd63299b389af948cc209531ce29de204b24552de59251a8fdf

          SHA512

          f4a911b6b91a1162554dc43d038c369d85ae4eec7cdc7e0b5faca00f4f94862ae10414c4797300ac8d61904eb4afcc1126304de2e296291d4db4f79203d4fc1b

          Download Submit

        • memory/1564-10-0x000000006E310000-0x000000006E320000-memory.dmp

          Filesize

          64KB

          Download

        • memory/1564-11-0x000000006E310000-0x000000006E320000-memory.dmp

          Filesize

          64KB

          Download