Analysis
-
max time kernel
196s -
max time network
185s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
24-11-2022 20:45
Static task
static1
Behavioral task
behavioral1
Sample
2014_11rechnung_K4768955881_pdf_sign_telekom_de_deutschland_gmbh.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
2014_11rechnung_K4768955881_pdf_sign_telekom_de_deutschland_gmbh.exe
Resource
win10v2004-20221111-en
General
-
Target
2014_11rechnung_K4768955881_pdf_sign_telekom_de_deutschland_gmbh.exe
-
Size
160KB
-
MD5
93c5ce9d871d19cdcf01de0865472c2f
-
SHA1
f2d1525e8bb81544e03406144fd3dcb9501befe2
-
SHA256
4e09d0ad9688191056413511441739c7246d6052b322dff889615c3d82ee8b98
-
SHA512
10bafb2b1184c642558cc7e6dddce7e04d03e1b5b0f696b5c7cb2a9c487f232eb788e3c57cbe9944649e0ae425a77645505198ec97554872165400e5c5be2b80
-
SSDEEP
3072:B7tIqiClxus4ZkEMb0rG7bat/A1rBykr7MlSRmV6/v7v:BtImlxus4Z1tt/AZBykrZugvD
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
2014_11rechnung_K4768955881_pdf_sign_telekom_de_deutschland_gmbh.exepid process 4172 2014_11rechnung_K4768955881_pdf_sign_telekom_de_deutschland_gmbh.exe 4172 2014_11rechnung_K4768955881_pdf_sign_telekom_de_deutschland_gmbh.exe