Overview

overview

1

Static

static

30a67f9d9c...d8.exe

windows7-x64

1

30a67f9d9c...d8.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    41s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2022, 14:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    30a67f9d9c8f419a4b4c20817f989293789c6c56c322fcb0d246c6baff743dd8.exe

  • Size

    685KB

  • MD5

    0cdda1e4228cc206c225df24bf3c2e39

  • SHA1

    58bf10d1281965d80b5a46210ccdf2cd862898f7

  • SHA256

    30a67f9d9c8f419a4b4c20817f989293789c6c56c322fcb0d246c6baff743dd8

  • SHA512

    28c17e7e435e33c6f02d60f60be489c94c3225319b660b4c86d9469e1ba46cf9b802ef272268ad1ea5c4991e8f02ff8bc04d5dae41edfce46d7e11db54f1033f

  • SSDEEP

    12288:SPwaGQDE8KH+I/solhPix/Wg1kizwjywlbxhnmNnCcLwiM8ZgI4xd+:SIaGQDE8KeI/solhPiQg6e7SnMCcyQTL

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\30a67f9d9c8f419a4b4c20817f989293789c6c56c322fcb0d246c6baff743dd8.exe
    "C:\Users\Admin\AppData\Local\Temp\30a67f9d9c8f419a4b4c20817f989293789c6c56c322fcb0d246c6baff743dd8.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:904

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/904-54-0x0000000075E11000-0x0000000075E13000-memory.dmp

    Filesize

    8KB

    Download