Overview

overview

10

Static

static

10

RTGS_COPY.cmd.exe

windows7_x64

3

RTGS_COPY.cmd.exe

windows10_x64

1

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows10_x64
  • resource
    win10-en-20211208
  • submitted
    04/01/2022, 16:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RTGS_COPY.cmd.exe

  • Size

    3.7MB

  • MD5

    1cdd2dcf1a3545143dc08e0cd3f3fcc0

  • SHA1

    30e1d553053985d26cb926303e30aaf8f08fe76a

  • SHA256

    b7cd89612804eefbea4cc01513408994f8ea65d03a2cd68d07da77d43afd787c

  • SHA512

    45562075dae952ebe2701d6a7d92b9af15867f306685680c1448592552b674f050ddd34334796e1e523c208bed6796b9c2264f1fef65a7fb7fdbaf61683cf7dd

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\RTGS_COPY.cmd.exe
    "C:\Users\Admin\AppData\Local\Temp\RTGS_COPY.cmd.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2720-115-0x0000000000B50000-0x0000000000CA3000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/2720-117-0x0000000000B51000-0x0000000000C4D000-memory.dmp

    Filesize

    1008KB

    Download