Overview

overview

3

Static

static

3

00220796b3...0N.exe

windows7-x64

3

00220796b3...0N.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    113s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    24-08-2024 05:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00220796b34e585ee5d944c59b715b50N.exe

  • Size

    918KB

  • MD5

    00220796b34e585ee5d944c59b715b50

  • SHA1

    9a3063e752f174eed0cf374e1982cce989ecd698

  • SHA256

    150bcb9eaa8ee67c9516efeda139a1d18820f18e02dcb846385c252df3bd4b46

  • SHA512

    49ebea14f4ff93075704c5ff99bc2409d7a70ebbbdf4cbf2f78c2ec1314345227f4c8e7ea6268844efc9ac7065c23a0632607987e8311c061286b1c318d0bee0

  • SSDEEP

    24576:hiryaFQUU3eYJbXi0lcOM6EhmEL6a9E5ark:kFlt050mx5ark

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
    adwarespyware
  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\00220796b34e585ee5d944c59b715b50N.exe
    "C:\Users\Admin\AppData\Local\Temp\00220796b34e585ee5d944c59b715b50N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Modifies Internet Explorer settings
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2452

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\Q2XE33Q5\www.baidu[1].xml
    Filesize

    268B

    MD5

    df61810a49b09d86e689501a382ac954

    SHA1

    9aa37ac1f779a4d5edb311dbb400ce72128c5f6b

    SHA256

    88fba94e0b782113684e51be2109a1445b3610cee99630c1ee592d8de93a4787

    SHA512

    d3e8e96234638996905e0e9f2f1b21b4a82fe6d1e4a078d48d60a3925b8ea06f3e45be1fa0208a9973fd3bb79a71b496d83dc7a081610018ef208f73a1ffebf7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\Q2XE33Q5\www.baidu[1].xml
    Filesize

    15KB

    MD5

    7c858544fea46c2cf6ea68dd790498e2

    SHA1

    6184fb292c674e81ba0d378281a38ad1f9d8eb63

    SHA256

    2b7e9282caabc0ef7bb95686d118f3a101bf3f61add2acbf4acf5130906bab31

    SHA512

    7f21ba965c31a27d6a22094eb50047a6138f9ced34b13560a716eed5b23de7b4a27e60bbaaa7df304f336e44539f4da93dadbb3349627edbe547d08940c6f8ec

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\Q2XE33Q5\www.baidu[1].xml
    Filesize

    113B

    MD5

    2cc8cd548d3c960fb98b5c07b2acba51

    SHA1

    9753f815d259bce0c9d8492f5f334d7674bec068

    SHA256

    e6985897815188e91575cbac62ad0e2d046a77b77c63e4f8290a8c2dc919373a

    SHA512

    8d3ee7b7be9288f8eb620653f68905cbe1a031d80793fc89ab436a87fe7d2f0ed443e748fa6e10d4c48415b81ce6d603e8640dff5cecd7927b5ef6d2149b5e72

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\httpwww.baidu.comfavicon.ico
    Filesize

    16KB

    MD5

    717b138033a41361b32b60fc5062ab2a

    SHA1

    af9841b6f0923f890f41feec52c94a0cd68f01d8

    SHA256

    c70088079fe9441a726c66ce0e73ae38315ec80051d3dd542c41b82fa0a1993a

    SHA512

    1985bf59c3ee8289bbe55fbe572371d1f401949e6a0179b35ca89e292173780956161feb257303fe9ff5fd2898ca7fd6105eb1796841ade0e1124eeb89aa70ac

    Download Submit

  • memory/2452-0-0x00000000377F0000-0x0000000037800000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2452-1-0x00000000777F4000-0x00000000777F5000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2452-2-0x00000000777E0000-0x00000000778F0000-memory.dmp

    Filesize

    1.1MB

    Download