Analysis

  • max time kernel
    134s
  • max time network
    136s
  • platform
    windows10_x64
  • resource
    win10v20201028
  • submitted
    21-11-2020 16:56

General

  • Target

    SecuriteInfo.com.Linux.Siggen.3357.22805.30916

  • Size

    437KB

  • MD5

    696e284146f1578e1b9150e621e4a8db

  • SHA1

    42dec20164c5759f6e433086d10dec4bae21000c

  • SHA256

    0f6a70f57aa95cfbbd7e4d5a88cf3bc4f6b02a104e316dbfee95525da57bd1ab

  • SHA512

    49d4bd87b601bf5e9bf56230fd31a62508e5c27bf4c84bc31774f7b7eeb38f5302dea041620f4249f63a2a0f6274ee941e53700788e0f920cf23a5acfaaffe53

Score
1/10

Malware Config

Signatures

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.Linux.Siggen.3357.22805.30916
    1⤵
    • Modifies registry class
    PID:492
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:2216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads