31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df | Triage

Analysis

max time kernel
63s
max time network
126s
platform
windows10_x64
resource
win10
submitted
17/07/2020, 21:52

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe
Size

276KB
MD5

2a7b399ac6450a94b25c00927502c300
SHA1

4199d6171bfb9bb172d57fb38157ff76c4de1acc
SHA256

31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df
SHA512

901c3eea462a05b4380218e9fe9a9f12f77d2c07655ae4f6b1eff0e5c6ac9fde3278bf2644436e25f824ed7a41014921455721e89c854367ff3f32f50e48b6cf

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2192	31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe
2192	31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2192	31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe
2192	31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe
2192	31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe
2192	31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe

C:\Users\Admin\AppData\Local\Temp\31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe
"C:\Users\Admin\AppData\Local\Temp\31c953cdbc5631001f21c5d3d25067cec11b56383687543d2b8190fb726585df.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2192-0-0x0000000002250000-0x000000000225C000-memory.dmp

Filesize
48KB

Download