Overview

overview

3

Static

static

ca67b117e3...17.exe

windows7-x64

3

ca67b117e3...17.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    209s
  • max time network
    253s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-11-2022 12:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ca67b117e3aa019bca750c395b22717bf4f052963b4cd01bafd8161d312d5e17.exe

  • Size

    3.0MB

  • MD5

    2e37cd7d13a5f60772045d8346bda215

  • SHA1

    cb884ae678fea67f92b5cef089322f27e37cdf11

  • SHA256

    ca67b117e3aa019bca750c395b22717bf4f052963b4cd01bafd8161d312d5e17

  • SHA512

    c5af2db831a9567c9fca87b346900f83d19dff7c439804958f28cb8b297a6e4ceb060b87a4f97fbe9eb5fc248a50c6ab2334129b455088bf8950d85649cb8eea

  • SSDEEP

    49152:4/0BuGN3NWYUKyMnLrN9fhSbPzwlMh+s8KuqGaX0ToIBAUZLYKeXp:00Bu8IYUK5nLLUzezJBAUZLMZ

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ca67b117e3aa019bca750c395b22717bf4f052963b4cd01bafd8161d312d5e17.exe
    "C:\Users\Admin\AppData\Local\Temp\ca67b117e3aa019bca750c395b22717bf4f052963b4cd01bafd8161d312d5e17.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    PID:4828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads