Analysis
-
max time kernel
142s -
max time network
32s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
22-02-2023 21:22
Behavioral task
behavioral1
Sample
368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exe
Resource
win10v2004-20230220-en
General
-
Target
368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exe
-
Size
4.6MB
-
MD5
8e06d980affa6bc26ac449c1e72a321c
-
SHA1
5e33956d017a59081feb2e1371cbfc0bc7cb3bde
-
SHA256
368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d
-
SHA512
2bda6f89d2894e94178a232d86cb1840590b23d1874eae00bb9a1da3af21bdbaa5a850261d6552eab41ad7fefb1833721f83bf77f2c427eecc9d51222ca136ba
-
SSDEEP
98304:ggkq+f4eg/qjIrzDRSq2uB/cYE5+HXfxTArEK0uuubJy:eO/VrzD8q3GyPxT+TuuNy
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exepid process 1416 368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exe 1416 368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exe 1416 368679a79c20d52ee5723d5d87a68da432d6e3e61709ece062ac3022ef38fe9d.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1416-54-0x0000000000400000-0x00000000012EB000-memory.dmpFilesize
14.9MB
-
memory/1416-55-0x0000000000400000-0x00000000012EB000-memory.dmpFilesize
14.9MB
-
memory/1416-56-0x0000000000400000-0x00000000012EB000-memory.dmpFilesize
14.9MB
-
memory/1416-57-0x0000000000400000-0x00000000012EB000-memory.dmpFilesize
14.9MB
-
memory/1416-58-0x0000000000400000-0x00000000012EB000-memory.dmpFilesize
14.9MB
-
memory/1416-59-0x0000000000230000-0x0000000000231000-memory.dmpFilesize
4KB
-
memory/1416-60-0x0000000000400000-0x00000000012EB000-memory.dmpFilesize
14.9MB
-
memory/1416-61-0x0000000000230000-0x0000000000231000-memory.dmpFilesize
4KB