Overview

overview

3

Static

static

3

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

LGBeanCl.exe

windows7-x64

1

LGBeanCl.exe

windows10-2004-x64

1

LGBeanClean.dll

windows7-x64

1

LGBeanClean.dll

windows10-2004-x64

3

LGBeanCommon.dll

windows7-x64

1

LGBeanCommon.dll

windows10-2004-x64

3

LGBeanCr.exe

windows7-x64

1

LGBeanCr.exe

windows10-2004-x64

1

LGBeanDefrag.dll

windows7-x64

3

LGBeanDefrag.dll

windows10-2004-x64

3

LGBeanDf.exe

windows7-x64

1

LGBeanDf.exe

windows10-2004-x64

1

LGBeanDk.exe

windows7-x64

1

LGBeanDk.exe

windows10-2004-x64

1

LGBeanDl.exe

windows7-x64

1

LGBeanDl.exe

windows10-2004-x64

1

LGBeanFi.exe

windows7-x64

1

LGBeanFi.exe

windows10-2004-x64

1

LGBeanFile.dll

windows7-x64

1

LGBeanFile.dll

windows10-2004-x64

3

LGBeanInfo.dll

windows7-x64

3

LGBeanInfo.dll

windows10-2004-x64

3

LGBeanKey.dll

windows7-x64

1

LGBeanKey.dll

windows10-2004-x64

1

LGBeanKey.exe

windows7-x64

1

LGBeanKey.exe

windows10-2004-x64

1

LGBeanMb.exe

windows7-x64

1

LGBeanMb.exe

windows10-2004-x64

3

LGBeanMem.exe

windows7-x64

1

LGBeanMem.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15-07-2024 06:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LGBeanKey.exe

  • Size

    431KB

  • MD5

    e8129d99bc931b72c1460521f41c8f0a

  • SHA1

    bc6d694691b4241bc0379451374d79fa780c11b5

  • SHA256

    0225d11d3f71709ee3be889c510b40a66287f8645dfc4af2fc5e8763c741c8be

  • SHA512

    b71d68fdb9596dbae00ad0cde3f7cea72e1c834e94f8ed0e4ae6904e7009777b556b46b71fbd64bc44edfc89bb1cb3467f5d0f059a579f9f14f4739483b93144

  • SSDEEP

    6144:gcN6F90iTcdt4BiIJczG8HkXWtbOSGUAkKGZD9arSpL8zmD2JIzZPMWHib4NMcL9:gmsnyIW7kQHBRarSp4zmD2JCP1He

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: LoadsDriver 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\LGBeanKey.exe
    "C:\Users\Admin\AppData\Local\Temp\LGBeanKey.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:1044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads