bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c

Analysis

max time kernel
32s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
01/10/2022, 19:38

Target

bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c.exe
Size

2.4MB
MD5

529ed21c2b26bc6bddd5bbfa544458fe
SHA1

0c8ff74986ce7c17653ddd0c7c4a710317db7916
SHA256

bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c
SHA512

c374f789dbf1b8bc6ed566b12559dd4ebdef3ab2f46de7cfad14560d22134ee8f888aeb9d27b73b17a9729dfa188a6b61557dfd8e660bc03cf739bc78cf40320
SSDEEP

24576:cAFITrkGIz36Q2sbIfi71i2HNtvjexqmTEC5Nn6b6cQiSH5REzwD813MzCuHby7C:cCwrkVLbL1frdCYR7SbHuuHG5Ct

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
980	bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c.exe
980	bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c.exe

C:\Users\Admin\AppData\Local\Temp\bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c.exe
"C:\Users\Admin\AppData\Local\Temp\bdf8fa078bef18d5e60895a89b60268abc1afb2b3f5d86d4ffd1f832d4c1a48c.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:980

memory/980-54-0x0000000075811000-0x0000000075813000-memory.dmp

Filesize
8KB

Download
memory/980-55-0x0000000000860000-0x0000000000BA7000-memory.dmp

Filesize
3.3MB

Download