Overview

overview

1

Static

static

99cfe4bc01...d4.exe

windows7-x64

1

99cfe4bc01...d4.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    32s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    29/11/2022, 13:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    99cfe4bc01d63e9040ca09d9d7b38665ebb740c40934e3c00d867d55f4ecc2d4.exe

  • Size

    1.9MB

  • MD5

    64446b7932a2253c78ce476058d0b7ce

  • SHA1

    a8d90b1828bae1179d8b1b98e6b9f05230eb7c54

  • SHA256

    99cfe4bc01d63e9040ca09d9d7b38665ebb740c40934e3c00d867d55f4ecc2d4

  • SHA512

    eeaf57df15d33a2ee3fc91331fb890b17fc634de84e9ee874d4f0a354c10700ad7c835620532ca1debb4050b89fb010c1b4ad7eba82561ba98d152efa9702a3d

  • SSDEEP

    24576:atEP24+kRPbsc7H/WjUjOdRWFG2Zg37ZbRg1IgLq2ZuY6wACHE7o6x+Qx:qU5ocTyUfng37BRg+gW2ZuYL2br

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\99cfe4bc01d63e9040ca09d9d7b38665ebb740c40934e3c00d867d55f4ecc2d4.exe
    "C:\Users\Admin\AppData\Local\Temp\99cfe4bc01d63e9040ca09d9d7b38665ebb740c40934e3c00d867d55f4ecc2d4.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:1252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1252-54-0x0000000076381000-0x0000000076383000-memory.dmp

    Filesize

    8KB

    Download