Overview

overview

5

Static

static

5

2b84d89259...18.exe

windows7-x64

3

2b84d89259...18.exe

windows10-2004-x64

3

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

e$EXEFILE.exe

windows7-x64

3

e$EXEFILE.exe

windows10-2004-x64

1

wget.exe

windows7-x64

5

wget.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    148s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/10/2024, 05:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e$EXEFILE.exe

  • Size

    601KB

  • MD5

    00961172ece76f41adae8759d728b2a6

  • SHA1

    0b86d0f2d367e61eb0a37648dfdf46d4b080c8a8

  • SHA256

    3b83f41249c7b3e6249e348ccbfbfc9be0f973c1bd65cf021e93dda712a3769d

  • SHA512

    67d06465886520898233a60becb853db6ac6de700073ccb2c1b16f868caf6ed6426ac14f53a43ec29526daf6dbd75c32e0fa87d6b21d26f72fc105c49c734c94

  • SSDEEP

    6144:qDix0OuDbQhEwaqfKBF2OyjHp/g39krWtR2g/1zPzbIdCSpckXB8buCwM:qDix0OQwLEOjJY3s617Idb/t

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e$EXEFILE.exe
    "C:\Users\Admin\AppData\Local\Temp\e$EXEFILE.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3692-0-0x00007FF81A2A5000-0x00007FF81A2A6000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3692-1-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-2-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-3-0x0000000001790000-0x000000000179A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3692-4-0x000000001C6C0000-0x000000001CB8E000-memory.dmp

    Filesize

    4.8MB

    Download

  • memory/3692-5-0x000000001C390000-0x000000001C42C000-memory.dmp

    Filesize

    624KB

    Download

  • memory/3692-6-0x00000000018F0000-0x00000000018F8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3692-7-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-8-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-9-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-10-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-11-0x00007FF81A2A5000-0x00007FF81A2A6000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3692-12-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/3692-15-0x00007FF819FF0000-0x00007FF81A991000-memory.dmp

    Filesize

    9.6MB

    Download