Overview

overview

10

Static

static

a4a1f54828...50.exe

windows7-x64

10

a4a1f54828...50.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    4s
  • max time network
    14s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/10/2022, 07:50

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a4a1f5482887f231a0f75b9c3d2b841ed49eadc8aa09f4aac30d79c0f2dae850.exe

  • Size

    68KB

  • MD5

    ac16d9e8952333f60eb5cfd1a02bae4d

  • SHA1

    700044769b25e92ff47620bd8daeff56174e4f3d

  • SHA256

    a4a1f5482887f231a0f75b9c3d2b841ed49eadc8aa09f4aac30d79c0f2dae850

  • SHA512

    3c2d4dfa7e5594faf3eccbea2c1db0936830179a7d79badf08d1ff33690e57d483057b9bb0c5d3e0b69c427eaae831a13e7e7fbc82603a93f5a54eef4321ea81

  • SSDEEP

    768:4c8liTdKEAl+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:n8Ix3AcqOK3qowgnt1d

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a4a1f5482887f231a0f75b9c3d2b841ed49eadc8aa09f4aac30d79c0f2dae850.exe
    "C:\Users\Admin\AppData\Local\Temp\a4a1f5482887f231a0f75b9c3d2b841ed49eadc8aa09f4aac30d79c0f2dae850.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1364
    • C:\Users\Admin\Admin.exe
      "C:\Users\Admin\Admin.exe"
      2⤵
        PID:928

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\Admin.exe
            Filesize

            19KB

            MD5

            2c8f83f56bd040b096cb98d634c96670

            SHA1

            d5172e457ab905048fdd6416340f73add3bd2e5f

            SHA256

            af92c4cb47c22804759f391186ecd251f4debfb80bed4b92b3760f4c477b7f9d

            SHA512

            97dcfa2d1bd0e12d2aeb273761086871cd3933ce2cf02fbdd1054ee3b4083c721924b9d4e85c84515482259286cd418dd3adb1a718be9d942ad6150fd86fc77e

            Download Submit

          • C:\Users\Admin\Admin.exe
            Filesize

            17KB

            MD5

            ad6d822d0fcaa136e143426d5f6b658c

            SHA1

            ac7e3875d1df397f15af8756b8077a203d233554

            SHA256

            8ddd0a9fdf322c5bf1485bf9e4cc89bde45b219b57faa17efb9a27ef02b3d7e0

            SHA512

            d968098113d6a88566079f2c845c9501fc66b6be96931156a3bfe4b74be39a75afcdf9b591604c03211b3254b25b009fcde606dde2e03025362fdb36bc049294

            Download Submit

          • memory/928-138-0x0000000000400000-0x0000000000415000-memory.dmp

            Filesize

            84KB

            Download

          • memory/1364-132-0x0000000000400000-0x0000000000415000-memory.dmp

            Filesize

            84KB

            Download