0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c

Analysis

max time kernel
37s
max time network
42s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
14-02-2023 18:24

Target

0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe
Size

1.8MB
MD5

c78fa887184c5e0e1905b4a0f14d2041
SHA1

0a21bdcb60fbe0e82ae837a390918b7a18b8af21
SHA256

0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c
SHA512

d4a359f7f1e090a12f50aaea90e927c25075319574a85df2e076bcdb81d85952492893a3dc2a567ed9f77c1df9dd3c4d31d58fc3d50dd35a6f09565f184e6993
SSDEEP

49152:1unUpG4l1TTrUmTKwPEtYnKU22vXo3OHUn+RydH7:IUvl5UeLFjnX2OWeyN

Score

1^/10

Suspicious use of SetWindowsHookEx 3 IoCs

Processes:

0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe

pid	process
980	0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe
980	0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe
980	0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe

C:\Users\Admin\AppData\Local\Temp\0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe
"C:\Users\Admin\AppData\Local\Temp\0fb40c03985f6b65d2ace764dd51b9c633a104c4ca591f29b791f823087f7f4c.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:980

memory/980-54-0x0000000076071000-0x0000000076073000-memory.dmp

Filesize
8KB

Download
memory/980-55-0x0000000000400000-0x00000000009BA000-memory.dmp

Filesize
5.7MB

Download
memory/980-56-0x0000000000400000-0x00000000009BA000-memory.dmp

Filesize
5.7MB

Download
memory/980-57-0x0000000000400000-0x00000000009BA000-memory.dmp

Filesize
5.7MB

Download
memory/980-58-0x0000000000400000-0x00000000009BA000-memory.dmp

Filesize
5.7MB

Download
memory/980-59-0x0000000000400000-0x00000000009BA000-memory.dmp

Filesize
5.7MB

Download