c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a

Analysis

max time kernel
144s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
06/12/2022, 13:12

Target

c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a.exe
Size

842KB
MD5

462e2e9c130946c79a0a7a82b46839e2
SHA1

421681191ec99b9b1b0f43b5d94215e27036d0ee
SHA256

c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a
SHA512

06b98935803881d6b33021737ba131d9d8d5623d86254473a9c10f81a7f848e65344716035eb7ed0ee9521b9f2c0b003f991cfcfc9b9a7ea82f76e8291949285
SSDEEP

24576:jcAp6BRuE1QMQDN8aQmXOf0oFDxJsLcZg:/KH1Q3Gme8oRxGGg

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1568	c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a.exe
1568	c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a.exe

C:\Users\Admin\AppData\Local\Temp\c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a.exe
"C:\Users\Admin\AppData\Local\Temp\c601b5865a8ddcb644af5d23fb6e2b8758d799a54758f22d7dadf8d210a6317a.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1568

memory/1568-132-0x0000000000400000-0x00000000006CB000-memory.dmp

Filesize
2.8MB

Download
memory/1568-133-0x0000000002460000-0x00000000024B4000-memory.dmp

Filesize
336KB

Download
memory/1568-134-0x0000000003650000-0x0000000003658000-memory.dmp

Filesize
32KB

Download
memory/1568-135-0x0000000003640000-0x0000000003643000-memory.dmp

Filesize
12KB

Download
memory/1568-136-0x0000000000400000-0x00000000006CB000-memory.dmp

Filesize
2.8MB

Download
memory/1568-137-0x0000000002460000-0x00000000024B4000-memory.dmp

Filesize
336KB

Download
memory/1568-138-0x0000000000400000-0x00000000006CB000-memory.dmp

Filesize
2.8MB

Download
memory/1568-139-0x0000000002460000-0x00000000024B4000-memory.dmp

Filesize
336KB

Download