Analysis

  • max time kernel
    51s
  • max time network
    54s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-06-2024 09:43

General

  • Target

    VxKex/VxKex.exe

  • Size

    2.9MB

  • MD5

    8b690d6134fcfa6e742f190e6d607f46

  • SHA1

    78e08ce01a08431799fe13ef308a7e6903950812

  • SHA256

    652f6d2901c86de4a05743b5f808fafb6e28b9720c39bce5e7e031d26cac9035

  • SHA512

    ef2aaf3f21bf879e1cb0411b03d3ab04ea03aa0cf9e51b65d7f3d3adcd229d8588dbe0d12af24e1f221dbf4419db3af45db2f24309f2258bb78a0cd191821910

  • SSDEEP

    49152:bSmD6/KwXbO5p3z6mQiwyf7dRoP538qLcCjVgoFjR4w4Ya3hYFUbK8xNCNe4Geh6:bSc6//2p3z60fJ6BQCCGjXMYeG8WNeY6

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\VxKex\VxKex.exe
    "C:\Users\Admin\AppData\Local\Temp\VxKex\VxKex.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:4956
    • C:\Users\Admin\AppData\Local\Temp\7z73B0535C\KexSetup.exe
      C:\Users\Admin\AppData\Local\Temp\7z73B0535C\KexSetup.exe
      2⤵
      • Executes dropped EXE
      PID:2420

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\7z73B0535C\KexSetup.exe

    Filesize

    67KB

    MD5

    652448785ef29b50673ac479ab320ec2

    SHA1

    8b2bffc5dd383e48d1662473b82225fcbe6056e7

    SHA256

    52ecd6cf623ae74808924692c4c2d79417904a12c6b7afb890cd6ce0478d3178

    SHA512

    737e0ed0175470a6f55443385eaba48865d1594253b7ec1d88bca938775ebce579c8a7e9755671f560249fcb1e9cada9f1acd657ace6d7f581f74bab2de7afd0