f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb

Analysis

max time kernel
286s
max time network
399s
platform
windows7_x64
resource
win7-20221111-en
resource tags

arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
submitted
25-11-2022 19:42

Target

f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe
Size

804KB
MD5

054508aae8fcf801abbff9b6b11fd84d
SHA1

61fbaa37bc24a1a4f5c297e924ad487dc1a9305f
SHA256

f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb
SHA512

0dcf66880d8fd35fb522c74e4e879cbd4db9c102fda205ef0140e63e10de078cff182511c46f5acdb75eb44cff875553d9865d1aaf1d279af36cad0e7f29d8f3
SSDEEP

12288:HiNI57AyZUM5TXXha+lVoVXEvM1gM+Sx5RGRsy2WjJ+s:HyI57fhTnhfleVTxyGWjJ+s

Score

1^/10

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe

pid	process
620	f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe
620	f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe
620	f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe
620	f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe

C:\Users\Admin\AppData\Local\Temp\f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe
"C:\Users\Admin\AppData\Local\Temp\f520af115f8b96613e40257dfbdac1123fb2b15f2e042d869f4a8c9fb0e99dfb.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:620

memory/620-54-0x0000000075491000-0x0000000075493000-memory.dmp

Filesize
8KB

Download