Analysis
-
max time kernel
105s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
22-02-2023 21:40
Behavioral task
behavioral1
Sample
5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da.exe
Resource
win10v2004-20230220-en
General
-
Target
5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da.exe
-
Size
1.3MB
-
MD5
bfa6b43238f18113dd5e84fb98ad7bc6
-
SHA1
30777d128463273b8bdaee1d87e199c2bff5cb7b
-
SHA256
5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da
-
SHA512
469500c2ec47b95bf9d2b8e9c9367d7cbb9ed15d8dd009f92006e50e05ac0050580f557f4acd89a3b0c8443fba345676ee463b6dfb1338d27662a0e3db5c6584
-
SSDEEP
24576:6wEMDOojLfaTWCuWAQHfbl+C1jPnevMRT7o0hsZ2QlkJUiw+gLx+12300hhJ:BaaCuWAQHfblLbzEmFJUx10m
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da.exepid process 2028 5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da.exe 2028 5176c4636c96c2a195943126987abc4d456169388bd773e7680602246e2873da.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2028-133-0x0000000000400000-0x0000000000748000-memory.dmpFilesize
3.3MB
-
memory/2028-134-0x0000000000400000-0x0000000000748000-memory.dmpFilesize
3.3MB
-
memory/2028-136-0x0000000000400000-0x0000000000748000-memory.dmpFilesize
3.3MB
-
memory/2028-137-0x0000000000400000-0x0000000000748000-memory.dmpFilesize
3.3MB