ab63add1c581e53aed8d75a24a5f0b9603c176cbb1e588051f2e0ade9938b12e | Triage

Analysis

max time kernel
13s
max time network
115s
platform
windows10_x64
resource
win10v20201028
submitted
13-01-2021 20:12

Sharing

Report Analysis Logs

General

Target

Statement of Accounts dated 12.15.2020 & Copy of Invoices.sfx.zip.exe
Size

584KB
MD5

3093d37f76dbd613e32dd064a29d2058
SHA1

c76cda0496ba5a5773338999a5c5c279a2e83b6c
SHA256

ab63add1c581e53aed8d75a24a5f0b9603c176cbb1e588051f2e0ade9938b12e
SHA512

f27315e1f1c925f015690bfbc777dbae331b2ccbf4844c8112ce306b0de888bc548cc0be378061d584ebeaa73b4029dc956314ab31ed2f38f3734194f345c1bb

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

Statement of Accounts dated 12.15.2020 & Copy of Invoices.sfx.zip.exe

pid	process
4040	Statement of Accounts dated 12.15.2020 & Copy of Invoices.sfx.zip.exe
4040	Statement of Accounts dated 12.15.2020 & Copy of Invoices.sfx.zip.exe

C:\Users\Admin\AppData\Local\Temp\Statement of Accounts dated 12.15.2020 & Copy of Invoices.sfx.zip.exe
"C:\Users\Admin\AppData\Local\Temp\Statement of Accounts dated 12.15.2020 & Copy of Invoices.sfx.zip.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...