Overview

overview

9

Static

static

3

d6de3b0dea...98.exe

windows7-x64

9

d6de3b0dea...98.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    125s
  • max time network
    127s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-06-2024 15:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6de3b0dea66889414f79b11603c39ec1497422f42665168c3d02ff34cf45098.exe

  • Size

    5.7MB

  • MD5

    e6cc570bcb689f428eeeac579842c38e

  • SHA1

    ea011bf36c5796336bf74d596a8dfe564fefbef7

  • SHA256

    d6de3b0dea66889414f79b11603c39ec1497422f42665168c3d02ff34cf45098

  • SHA512

    31da798a647337da1adeb57ef5829343b7470b0a57ca7913ad522772f21501012a050deca3db29993c8105eadac3f843d1eccf1e012be2ca0bbcbcffe24fdd43

  • SSDEEP

    98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7NmBkVK:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85x

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d6de3b0dea66889414f79b11603c39ec1497422f42665168c3d02ff34cf45098.exe
    "C:\Users\Admin\AppData\Local\Temp\d6de3b0dea66889414f79b11603c39ec1497422f42665168c3d02ff34cf45098.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3028
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=2668,i,14648456027158448592,4956305794400220180,262144 --variations-seed-version --mojo-platform-channel-handle=3864 /prefetch:8
    1⤵
      PID:4604

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
      Filesize

      652B

      MD5

      90d8dd445e92f53978a32ef6cb38d4ce

      SHA1

      fe2cc938c443c045a01c8b7b508779f48ddf872c

      SHA256

      e5ed444575af858da085f28530dc4b229b9027752f12204c312cfdd4eb496aee

      SHA512

      cceca23139866f59fd7c0bef838a5ce956566b42a5f91a3d2745333a55b47761c1ed9e37ff9ab80cfa6beb1df0c7f880d3eec9facdffe75d4ffd53203a56b393

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
      Filesize

      4KB

      MD5

      3a2e85e1c5cb230334ca222b42a7006f

      SHA1

      566b3e0baee98464783c6be05d49ed292fe86c58

      SHA256

      fbbef8849b96eda9b5396820bf1d97fc123e3c93dd68658448874e18cf6061ac

      SHA512

      6e517c0a2a2d98bae5a37b964dff3a503d037bb6f2af514d92a8d1c903238feba5a4070afa6e3dd4df024a6e4d7b4de347fd8b91e4ecb4b0c2c7ab9dc63fd765

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
      Filesize

      310B

      MD5

      4f32a659e65b86660edccf95eb243089

      SHA1

      1be342bf119af50d7d927c422197c1636c1e617c

      SHA256

      1893a1426abca0411d253b013dc6301a4fb4c46f2055b491d7903fb0f970b00e

      SHA512

      01839c5af6fda3edd504e84b90df05915de6f0ec049654b1d65dee4e07bacd66e36efbf9164d2b4b5c2b585a6dba8c24b3707a91fba633b199ddacdfe2017e90

      Download Submit