a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5 | Triage

Analysis

max time kernel
119s
max time network
126s
platform
windows10_x64
resource
win10
submitted
18-07-2020 10:52

Sharing

Report Analysis Logs

General

Target

a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe
Size

273KB
MD5

b83c1ea02282a9628ab97fd7ef7df832
SHA1

1a039d739049f41f4c3777da0c76dcb971af2a87
SHA256

a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5
SHA512

c91ba5256e7ab6ad564027343e258c858d68f8baeb504e51679a5e3d0c7d1819671e34a6e5efa594b75188fdc28ac6a6f7ccbb90261076f095a7207d94ef1858

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3612	a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe
3612	a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
3612	a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe
3612	a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe
3612	a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe
3612	a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe

C:\Users\Admin\AppData\Local\Temp\a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe
"C:\Users\Admin\AppData\Local\Temp\a4517d51cea09ae71143cbad29a43440518a0cbbb5b64bce446a31e4032979a5.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
PID:3612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3612-0-0x0000000002250000-0x000000000225C000-memory.dmp

Filesize
48KB

Download