Analysis
-
max time kernel
56s -
max time network
124s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
21-02-2023 19:14
Behavioral task
behavioral1
Sample
2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exe
Resource
win10v2004-20230220-en
General
-
Target
2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exe
-
Size
4.3MB
-
MD5
00395d9693862a6cdcd769e6bd540fe1
-
SHA1
12908b1fb11aed1657a437c1efd1ce7c0cc2d133
-
SHA256
2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd
-
SHA512
c7a7549ea4b4eaddc7347015c6a883d5782065fd1cf178acd8710840242a057bba3f2ae70e4bb2ab13cac7f83bd15cc0b4d2bb970e5c1d754b03fcb6a6cef9cc
-
SSDEEP
98304:8WVsS8RhweqqfUk706hgU7HfOuYXevnC87emSlmVQ3Bcl/A:8WVsS8df/7bXHfORXInXedqI
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exepid process 4396 2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exe 4396 2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exe 4396 2224e40fda8dc5900c484a8335830b0eb0eaaace9616ee690f71928dbda29fcd.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Local\Temp\config.iniFilesize
71B
MD5808d5f6b23e4875401edaee3299a1c91
SHA181e8cb661476dc24702829634cfe5fc15b3d26f7
SHA2560c9461ab0c7a55cd42c89245dec1549110b207b7621934b59223c87bb8bb07dd
SHA5129fff19d552ca4966eac6445f7d8bbdfc1e36e4d49b29e1b80cae5ef513910a13694f0f5e8b37ff82e78dc7419fa804c326c87577e473a87bc4ffc728e9c0defb
-
memory/4396-143-0x0000000002EE0000-0x0000000003020000-memory.dmpFilesize
1.2MB
-
memory/4396-136-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-142-0x0000000002EE0000-0x0000000003020000-memory.dmpFilesize
1.2MB
-
memory/4396-141-0x0000000002EE0000-0x0000000003020000-memory.dmpFilesize
1.2MB
-
memory/4396-138-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-139-0x0000000002EE0000-0x0000000003020000-memory.dmpFilesize
1.2MB
-
memory/4396-140-0x0000000002EE0000-0x0000000003020000-memory.dmpFilesize
1.2MB
-
memory/4396-133-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-191-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-135-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-137-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-145-0x0000000001420000-0x0000000001421000-memory.dmpFilesize
4KB
-
memory/4396-134-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-182-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-183-0x0000000001420000-0x0000000001421000-memory.dmpFilesize
4KB
-
memory/4396-187-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-190-0x0000000000400000-0x00000000010FA000-memory.dmpFilesize
13.0MB
-
memory/4396-144-0x0000000002EE0000-0x0000000003020000-memory.dmpFilesize
1.2MB