40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd | Triage

Analysis

max time kernel
120s
max time network
126s
platform
windows10_x64
resource
win10
submitted
17-07-2020 20:44

Sharing

Report Analysis Logs

General

Target

40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe
Size

276KB
MD5

c9adeaee5f074f0311fb5659d359e07e
SHA1

a37eeeec5eb37335b5496e5d2fb49d3fc581921c
SHA256

40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd
SHA512

3a33c5d6e5008588af1d24c3618e81e48d3786ec4cb1ff93bc8b42c5ec9922955fc32b7e4feb04ed4abd084e5f3cf5138ecd7c5632c535fa121c93491f8e5cf5

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3900	40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe
3900	40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3900	40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe
3900	40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe
3900	40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe
3900	40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe

C:\Users\Admin\AppData\Local\Temp\40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe
"C:\Users\Admin\AppData\Local\Temp\40a8310183cd881d42cc1e0d961bf6fa87e3947a51b5fc83eb66b5e2e5224fbd.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
PID:3900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3900-0-0x0000000002260000-0x000000000226C000-memory.dmp

Filesize
48KB

Download