995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555 | Triage

Analysis

max time kernel
124s
max time network
146s
platform
windows10_x64
resource
win10v200430
submitted
18-07-2020 15:21

Sharing

Report Analysis Logs

General

Target

995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe
Size

100KB
MD5

0e02eb04304529f93d3e9a121697955b
SHA1

bd6b750501d90c8562881609a394950e42e59452
SHA256

995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555
SHA512

7360c0dff0b687b090726beae9231e808e6acfcf918be7dd4f3a15801cd533ba9245513510bccfce72d90c55959f6a044f20ac4d2b13a9eee35b5bc920283eb3

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2536	995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe
2536	995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2536	995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe
2536	995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe
2536	995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe
2536	995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe

C:\Users\Admin\AppData\Local\Temp\995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe
"C:\Users\Admin\AppData\Local\Temp\995b1535ec1736b739d535561b9d57ec5016f6168eb153c0db9bd1236bd2b555.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
PID:2536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2536-0-0x0000000002210000-0x000000000221C000-memory.dmp

Filesize
48KB

Download