Overview

overview

10

Static

static

HertzModSetup.exe

windows7_x64

10

HertzModSetup.exe

windows10-2004_x64

10

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-en-20211208
  • submitted
    09-02-2022 07:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    HertzModSetup.exe

  • Size

    545KB

  • MD5

    a08cdaf415bbea1a8a1c1f9d64ed7f05

  • SHA1

    6b124f06c96ef260d6d1a3dc7f53f2f2390ec974

  • SHA256

    77b9b69c6a0c2d1ca22a03ce3833852a11e06ca4a0e47e7dfd8b4c3f1846c350

  • SHA512

    336d877eb140fb5f87d275ddd1c96d85ea991d507e29e8a5a0c76ac4207a810380d490d330a0aed9b924580fc45026f1e556267aa7fab14ae43f507538efe84c

Score
10/10
phoenixstealerstealer

Malware Config

Signatures

  • PhoenixStealer

    PhoenixStealer is an information stealer written in the C++, it sends the stolen information to cybercriminals.

    stealerphoenixstealer

Processes

  • C:\Users\Admin\AppData\Local\Temp\HertzModSetup.exe
    "C:\Users\Admin\AppData\Local\Temp\HertzModSetup.exe"
    1⤵
      PID:1636

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1636-55-0x0000000075021000-0x0000000075023000-memory.dmp

      Filesize

      8KB

      Download