123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b

Analysis

max time kernel
259s
max time network
342s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
26-11-2022 04:20

Target

123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe
Size

11.0MB
MD5

ed467dd4850dc17520c7439172cb30b0
SHA1

f4a5fcebbe294475f58589460f2cb4573597986f
SHA256

123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b
SHA512

4f8f8cc38774b2584ee16c6c1b121242bbca725a8206b9ebead0fa6fc1906b3f128afdd95e3f66fe5f304c9b9ebf4927a2635467578422d5bce1a5dd65e383c9
SSDEEP

196608:KmLh2p3ANDneIlneIIWbODnHHlyV9DeqtRc+qASoFNASoF4ASoFY:KPAVeI4R4ODHFyV/RBuoFVoFooFY

Score

1^/10

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe

pid	process
5016	123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe
5016	123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe
5016	123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe
5016	123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe

C:\Users\Admin\AppData\Local\Temp\123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe
"C:\Users\Admin\AppData\Local\Temp\123504f0fc0253efa52a458d0a65bbbc6f648bf8dd2e1f60b9199afd1842ee5b.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:5016