Analysis

  • max time kernel
    40s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    22-10-2022 08:27

General

  • Target

    绿石操盘手/绿石操盘手.exe

  • Size

    843KB

  • MD5

    6d9f168e57f72da43ca99eb3cfe773bd

  • SHA1

    f31c0236448caa014a3f4bcc2eb8feceeac3aec2

  • SHA256

    48d15de72d11cce8cad8054781e9bb12ad8978a179b4643768beccb978096eb3

  • SHA512

    85a5d87be0f2d977f583e5b143d8f51350699458a337e850eb5c296bfcec32e0ce2a50ace6d3a49ec779a49d03edc850c492143324f840940b8a7dbfc4581812

  • SSDEEP

    6144:0Pe4NU73qA+xZyIvm9hv5V7rh+1Pr8yIFoJmHSLOyyjwCA19RVK2Oa8B3Xmq8Pga:8bUR+xZySmVdYFrQycq7g238CIbJ4

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\绿石操盘手\绿石操盘手.exe
    "C:\Users\Admin\AppData\Local\Temp\绿石操盘手\绿石操盘手.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1668

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1668-54-0x0000000075071000-0x0000000075073000-memory.dmp

    Filesize

    8KB