Overview

overview

1

Static

static

利用软�...��.url

windows7-x64

1

利用软�...��.url

windows10-2004-x64

1

ǧѰQQ�...ֵ.exe

windows7-x64

1

ǧѰQQ�...ֵ.exe

windows10-2004-x64

1

利用软�...��.exe

windows7-x64

1

利用软�...��.exe

windows10-2004-x64

1

利用软�...��.url

windows7-x64

1

利用软�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    23s
  • max time network
    35s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    23-11-2022 15:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ǧѰQQԱһǩɳֵ.exe

  • Size

    600KB

  • MD5

    ee9fcb1df3909347a869bf5c55c3d53d

  • SHA1

    573d964692aead7652347f23cca83585079cf0ef

  • SHA256

    9049ffb11fde54f1aa3f9e4d9a384416ac975f5a2be43eb902159abd794f5d7f

  • SHA512

    5fd865efb2a0b23a1f6368eadc1d940949e6ada93073274c77ab6caad02cdc6403a1bd7d9e354b1afea670d0c11f050798f1fb23da993035cfcc74def57b16e4

  • SSDEEP

    6144:0etpya+JDGPh0f29mK1ZyDiy4DpcHF18+48tMI9xuHdJGcwM8vw8K/m8Z:0eLyaUBMm0ZyDiyyuOj2QHdJnD3

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ǧѰQQԱһǩɳֵ.exe
    "C:\Users\Admin\AppData\Local\Temp\ǧѰQQԱһǩɳֵ.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1360-54-0x0000000075E11000-0x0000000075E13000-memory.dmp

    Filesize

    8KB

    Download