Overview

overview

8

Static

static

8

霸者网�...��.exe

windows7-x64

1

霸者网�...��.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    42s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    23-11-2022 15:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    霸者网络①服.exe

  • Size

    3.4MB

  • MD5

    c0629e0f17577b6bb86fe05c478d2d9f

  • SHA1

    0bd07ea1316be8a476e9b665a6573b0012a12e8f

  • SHA256

    0df8569883e03a214ccddcc0ca9f09b7964dc3a73e7e10b8065b5e84469c2fbb

  • SHA512

    836b3758413b8743247893c47af0402e83ee4469100accf2486f57ad48e58b2f1c159f09058d29e1b05ebe3a6e4c0e5cae0dc5f42d637d3610944e00542a07f7

  • SSDEEP

    98304:jp4Enyny6nfslB78LkKpOOB+kJN14lVJxEAOFjQYqkNsw:t4jy6nap6pOOvJcDcjb+w

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\霸者网络①服.exe
    "C:\Users\Admin\AppData\Local\Temp\霸者网络①服.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1584-54-0x0000000074BB1000-0x0000000074BB3000-memory.dmp
    Filesize

    8KB

    Download
  • memory/1584-55-0x0000000000400000-0x000000000080E000-memory.dmp
    Filesize

    4.1MB

    Download
  • memory/1584-56-0x0000000000400000-0x000000000080E000-memory.dmp
    Filesize

    4.1MB

    Download