afbea9050cf76d3a393f4efe786212944c9629e2b11d7dd7939d152397501bb0

Submit
Reports

Overview

overview

Static

static

EES Aprend...ow.chm

windows7-x64

EES Aprend...ow.chm

windows10-2004-x64

EES Aprend...on.chm

windows7-x64

EES Aprend...on.chm

windows10-2004-x64

EES Aprend...ow.chm

windows7-x64

EES Aprend...ow.chm

windows10-2004-x64

EES Aprend...gs.chm

windows7-x64

EES Aprend...gs.chm

windows10-2004-x64

EES Aprend...mi.chm

windows7-x64

EES Aprend...mi.chm

windows10-2004-x64

EES Aprend...cy.chm

windows7-x64

EES Aprend...cy.chm

windows10-2004-x64

EES Aprend...or.chm

windows7-x64

EES Aprend...or.chm

windows10-2004-x64

EES Aprend...rs.chm

windows7-x64

EES Aprend...rs.chm

windows10-2004-x64

EES Aprend...HX.chm

windows7-x64

EES Aprend...HX.chm

windows10-2004-x64

EES Aprend...es.chm

windows7-x64

EES Aprend...es.chm

windows10-2004-x64

EES Aprend...ce.doc

windows7-x64

EES Aprend...ce.doc

windows10-2004-x64

EES Aprend...ce.pdf

windows7-x64

EES Aprend...ce.pdf

windows10-2004-x64

EES Aprend...23.dll

windows7-x64

EES Aprend...23.dll

windows10-2004-x64

EES Aprend...lo.dll

windows7-x64

EES Aprend...lo.dll

windows10-2004-x64

EES Aprend...rs.chm

windows7-x64

EES Aprend...rs.chm

windows10-2004-x64

EES Aprend...es.chm

windows7-x64

EES Aprend...es.chm

windows10-2004-x64

Analysis

max time kernel
24s
max time network
32s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
12-03-2023 20:06

Sharing

Copy URL

Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/external_flow.chm

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/external_flow.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/internal_flow.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/internal_flow.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/regenerator_packings.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/regenerator_packings.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Emissivity/Emissivity_TotHemi.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Emissivity/Emissivity_TotHemi.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fin Efficiency/fin efficiency.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fin Efficiency/fin efficiency.chm

Resource

win10v2004-20230221-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fouling Factors/FoulingFactor.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fouling Factors/FoulingFactor.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Minor Losses/minor losses.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Minor Losses/minor losses.chm

Resource

win10v2004-20230221-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.doc

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral22

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.doc

Resource

win10v2004-20230220-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.pdf

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.pdf

Resource

win10v2004-20230220-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral25

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/F3d7123.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/F3d7123.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/MonteCarlo.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/MonteCarlo.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/view factors.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/view factors.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Reference Tables/Reference Tables.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Reference Tables/Reference Tables.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm
Size

15KB
MD5

3f65b6844f0b1b0a3947b96ae26009d1
SHA1

6312f21fe8be9d3e0bd22da98a11aee3923f44a6
SHA256

dfd5c5304f58c9e49ad99584435dfc9cf339aa37dc2e18a662b68488c18f3bf2
SHA512

8f6a677df479f79898377c7943b5d75a6f07876cb861e346f73713d043229a430a87e628a6ad0bedbea7ed7b5392874703bc7feb4164995fde05eea922ffcf4a
SSDEEP

192:+nH4SAyEbU7d2hqCpIFmvLoiDcs8s7Chl0QWzcdM23Ia:+ndEbUsHpIOLoiDcs5ml0QacWY1

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 1 IoCs
adware spyware

Modify Registry
T1112

Processes:

hh.exe

description ioc process

Key created \REGISTRY\USER\S-1-5-21-1563773381-2037468142-1146002597-1000\Software\Microsoft\Internet Explorer\Main hh.exe
Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

hh.exe

pid process

1676 hh.exe
1676 hh.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-1563773381-2037468142-1146002597-1000\Software\Microsoft\Internet Explorer\Main	hh.exe

pid	process
1676	hh.exe
1676	hh.exe

Processes

C:\Windows\hh.exe
"C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\EES Aprende.Química.e.Ingeniería.con.Toño\Userlib\Heat Transfer\Heat Exchangers\Heat Exchangers.chm"
1⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1676

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads