Overview

overview

8

Static

static

8

b40d68b490...f6.exe

windows7-x64

8

b40d68b490...f6.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    87s
  • max time network
    31s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    28-11-2022 00:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b40d68b490c8fbe471ef7e83c62c2cb604c8fab8a836d398d4b40dcd7d71aff6.exe

  • Size

    63KB

  • MD5

    f56543e4f3377a2442e8eff2a742da05

  • SHA1

    0e6d010c18040d68e5e2e363a112bf0a003812f0

  • SHA256

    b40d68b490c8fbe471ef7e83c62c2cb604c8fab8a836d398d4b40dcd7d71aff6

  • SHA512

    efb2e2758468bfbda75cf8b451381ddea856b0f88e6a043f5cd8494864f0f9b21ca4ef25dd280c8e08be5fca0da601b0a3861790fc1fc4fd56ecf602838e2479

  • SSDEEP

    1536:I6568pRYVk0V6890x3am7z/dl9S+yB3fzpdOiMLFjMgK:N68p+eY68S5fFGFVfzpdOzagK

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b40d68b490c8fbe471ef7e83c62c2cb604c8fab8a836d398d4b40dcd7d71aff6.exe
    "C:\Users\Admin\AppData\Local\Temp\b40d68b490c8fbe471ef7e83c62c2cb604c8fab8a836d398d4b40dcd7d71aff6.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1164-54-0x0000000000400000-0x00000000004BD000-memory.dmp

    Filesize

    756KB

    Download

  • memory/1164-57-0x0000000000400000-0x00000000004BD000-memory.dmp

    Filesize

    756KB

    Download