d58e8d6b1ada854b4d1331a4d3e80fa569e07f9adf32fcacd2bdb7255370e8e4 | Triage

Analysis

max time kernel
157s
max time network
168s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
23-11-2022 15:48

Sharing

Report Analysis Logs

General

Target

滚刀手大极品.exe
Size

3.0MB
MD5

c13f6e3a759f0322c3e537d88c1ee4a3
SHA1

0002dcb23668f94eeb1bac264369c7bd2fb6ec49
SHA256

f96b9fea0dd96edb56ad292dc3e66dd8c3c70e9c214ae250ed63398fe99243fe
SHA512

3de705c3a13e9b4481993b9df2d9722c60ecfa0772c154010c869f8c5d07b895d3d0a8d071c3366102349bab363d0ba1b8d796e434efd2eb3aa7e26437ea67f1
SSDEEP

98304:jp4Enyny6nfslB78LkKpOOB+kJN14lV0ulF:t4jy6nap6pOOvJcDj

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

滚刀手大极品.exe

pid process

4616 滚刀手大极品.exe
4616 滚刀手大极品.exe

C:\Users\Admin\AppData\Local\Temp\滚刀手大极品.exe
"C:\Users\Admin\AppData\Local\Temp\滚刀手大极品.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4616

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4616-132-0x0000000000400000-0x000000000080E000-memory.dmp

Filesize
4.1MB

Download
memory/4616-133-0x0000000000400000-0x000000000080E000-memory.dmp

Filesize
4.1MB

Download