Overview

overview

9

Static

static

Hyper Canv...SH.nfo

windows7-x64

1

Hyper Canv...SH.nfo

windows10-2004-x64

1

Hyper Canv...2O.nfo

windows7-x64

1

Hyper Canv...2O.nfo

windows10-2004-x64

1

Hyper Canv...up.exe

windows7-x64

9

Hyper Canv...up.exe

windows10-2004-x64

9

Hyper Canv...id.diz

windows7-x64

3

Hyper Canv...id.diz

windows10-2004-x64

3

Analysis

  • max time kernel
    67s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    01/02/2023, 19:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Hyper Canvas v1.53 - Edirol/H2O.nfo

  • Size

    14KB

  • MD5

    4738ed58afdb59d5b2d679a9ffa5ab2f

  • SHA1

    ac8181e6711935a3521c454468ccb92fd2f51207

  • SHA256

    127059616675b75abc94f6b9c9f57f8d965a3cd5c186cec67e588d60dbc053b9

  • SHA512

    079d3ab0b373b95c20ba99fce7b546cd630b40fbb99a13608de9033ca3bbf436c043a3aec4ea207334c312ede0d848ce01d6cce6e60879c32af2e124ab025ab7

  • SSDEEP

    96:8zOu7lCFnReeZhCID/epnnabrEU9MV7Z+4BYVPiS0hzw7pXbymEh+nZ57EaBjSz:nnReeZgpnna3f+71Bsiihby3h+nbEaUz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Windows\system32\msinfo32.exe
    C:\Windows\system32\msinfo32.exe "C:\Users\Admin\AppData\Local\Temp\Hyper Canvas v1.53 - Edirol\H2O.nfo"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    PID:944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/944-54-0x000007FEFC4E1000-0x000007FEFC4E3000-memory.dmp

    Filesize

    8KB

    Download