Analysis
-
max time kernel
145s -
max time network
155s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
-
submitted
23-11-2022 13:28
General
-
Target
460c80b4008713da8c6398cff1d855e04336b5f22af70a6e7da93e40ab16ea05.exe
-
Size
1.3MB
-
MD5
239dc40b3cbe1ab3faeb585a249dce6a
-
SHA1
29646b0ac218d59594c93278f002bdc519f0b16a
-
SHA256
460c80b4008713da8c6398cff1d855e04336b5f22af70a6e7da93e40ab16ea05
-
SHA512
064ef735410d07b283d7f95aa3c136806e8c5fb90f403c58918ddb2c1d737327f7be73d1d6e3169e22f4ad4cd24e2ecbf395dc7f66cdc96b69e7b7e8dc70e9bc
-
SSDEEP
24576:7rKqlGCPcJKwybUDwEZZODYmR9G+gnbkk6XRJfe3DqYO/KpLwFfngWX4VmJPakf:7rKo4ZwCOnYjVmJPao
Score
5/10
Malware Config
Signatures
-
Suspicious use of SetThreadContext 1 IoCs
-
Suspicious use of SetWindowsHookEx 5 IoCs
-
Suspicious use of WriteProcessMemory 10 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\460c80b4008713da8c6398cff1d855e04336b5f22af70a6e7da93e40ab16ea05.exe"C:\Users\Admin\AppData\Local\Temp\460c80b4008713da8c6398cff1d855e04336b5f22af70a6e7da93e40ab16ea05.exe"1⤵
- Suspicious use of SetThreadContext
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\460c80b4008713da8c6398cff1d855e04336b5f22af70a6e7da93e40ab16ea05.exe2⤵
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/4944-132-0x0000000000000000-mapping.dmp
-
memory/4944-133-0x0000000000400000-0x00000000004D9000-memory.dmpFilesize
868KB
-
memory/4944-134-0x0000000000400000-0x00000000004D9000-memory.dmpFilesize
868KB
-
memory/4944-135-0x0000000000400000-0x00000000004D9000-memory.dmpFilesize
868KB
-
memory/4944-136-0x0000000000400000-0x00000000004D9000-memory.dmpFilesize
868KB
-
memory/4944-137-0x0000000000400000-0x00000000004D9000-memory.dmpFilesize
868KB
-
memory/4944-138-0x0000000000400000-0x00000000004D9000-memory.dmpFilesize
868KB