Analysis

  • max time kernel
    12s
  • max time network
    15s
  • platform
    windows7_x64
  • resource
    win7v20210408
  • submitted
    19-07-2021 09:01

General

  • Target

    Justificacion de pago 75. 344,70 Euro de Grupo Santander.exe

  • Size

    236KB

  • MD5

    95ea943b96693d01b5301e34fc485393

  • SHA1

    5cc3bd27ea3b9634c09043095c52da001e986ad5

  • SHA256

    842a028d1a0b25b4e443f3df6f4ad724b53826604d6e5963668223e44740033f

  • SHA512

    784a374257c4135188c31ebde469acf53e34ff621c220522b8fb124822232fde6c9f3fca58acd6c548498e0b6e79b317626de56b242565e2310033d10edac84c

Score
10/10

Malware Config

Signatures

  • Guloader,Cloudeye

    A shellcode based downloader first seen in 2020.

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Justificacion de pago 75. 344,70 Euro de Grupo Santander.exe
    "C:\Users\Admin\AppData\Local\Temp\Justificacion de pago 75. 344,70 Euro de Grupo Santander.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/940-62-0x0000000000370000-0x0000000000384000-memory.dmp
    Filesize

    80KB