837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2 | Triage

Analysis

max time kernel
126s
max time network
124s
platform
windows10_x64
resource
win10
submitted
18-07-2020 18:27

Sharing

Report Analysis Logs

General

Target

837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe
Size

100KB
MD5

46ebbbe2c5183bbdbf57995a25f36c47
SHA1

8642cb29f74ba87fde66ea0f4beb711afdf50d67
SHA256

837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2
SHA512

b339bc807a875b4c72fbaf65c88db389469d7dee68258d955901be38ba03b7996c166631851c157a4fd684e59528a3bb7a9f7424708d15e4c1f97751b6d91e5a

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3832	837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe
3832	837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3832	837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe
3832	837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe
3832	837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe
3832	837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe

C:\Users\Admin\AppData\Local\Temp\837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe
"C:\Users\Admin\AppData\Local\Temp\837dda9ec6c84f48ece2d42e08be4242a1a1668bbc8afb45dac77dbe3d9252d2.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
PID:3832

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3832-0-0x00000000023F0000-0x00000000023FC000-memory.dmp

Filesize
48KB

Download