afbea9050cf76d3a393f4efe786212944c9629e2b11d7dd7939d152397501bb0

Submit
Reports

Overview

overview

Static

static

EES Aprend...ow.chm

windows7-x64

EES Aprend...ow.chm

windows10-2004-x64

EES Aprend...on.chm

windows7-x64

EES Aprend...on.chm

windows10-2004-x64

EES Aprend...ow.chm

windows7-x64

EES Aprend...ow.chm

windows10-2004-x64

EES Aprend...gs.chm

windows7-x64

EES Aprend...gs.chm

windows10-2004-x64

EES Aprend...mi.chm

windows7-x64

EES Aprend...mi.chm

windows10-2004-x64

EES Aprend...cy.chm

windows7-x64

EES Aprend...cy.chm

windows10-2004-x64

EES Aprend...or.chm

windows7-x64

EES Aprend...or.chm

windows10-2004-x64

EES Aprend...rs.chm

windows7-x64

EES Aprend...rs.chm

windows10-2004-x64

EES Aprend...HX.chm

windows7-x64

EES Aprend...HX.chm

windows10-2004-x64

EES Aprend...es.chm

windows7-x64

EES Aprend...es.chm

windows10-2004-x64

EES Aprend...ce.doc

windows7-x64

EES Aprend...ce.doc

windows10-2004-x64

EES Aprend...ce.pdf

windows7-x64

EES Aprend...ce.pdf

windows10-2004-x64

EES Aprend...23.dll

windows7-x64

EES Aprend...23.dll

windows10-2004-x64

EES Aprend...lo.dll

windows7-x64

EES Aprend...lo.dll

windows10-2004-x64

EES Aprend...rs.chm

windows7-x64

EES Aprend...rs.chm

windows10-2004-x64

EES Aprend...es.chm

windows7-x64

EES Aprend...es.chm

windows10-2004-x64

Analysis

max time kernel
143s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
12-03-2023 20:06

Sharing

Copy URL

Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/external_flow.chm

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/external_flow.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/internal_flow.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/internal_flow.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/regenerator_packings.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/regenerator_packings.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Emissivity/Emissivity_TotHemi.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Emissivity/Emissivity_TotHemi.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fin Efficiency/fin efficiency.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fin Efficiency/fin efficiency.chm

Resource

win10v2004-20230221-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fouling Factors/FoulingFactor.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fouling Factors/FoulingFactor.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Minor Losses/minor losses.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Minor Losses/minor losses.chm

Resource

win10v2004-20230221-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.doc

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral22

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.doc

Resource

win10v2004-20230220-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.pdf

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.pdf

Resource

win10v2004-20230220-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral25

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/F3d7123.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/F3d7123.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/MonteCarlo.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/MonteCarlo.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/view factors.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/view factors.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Reference Tables/Reference Tables.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Reference Tables/Reference Tables.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm
Size

31KB
MD5

9ba02d4aebc1af275d74fb592393d292
SHA1

11377f6cedd2cce7543bcb8fd64d421d7bbcdd5e
SHA256

6adc8853bccb6a6b3d5203e3e97f48ff478bc895cecbb3f4d538a566e2f76635
SHA512

3c4c8989c0d6b5e264e837fcd4dc328ed85397b4a8cf3fb2ab7fe7276d6b6e4bb34e0647c649514b98f7b555fa18717e845ca2d5d9f177ed44f320ca92fbeaf3
SSDEEP

768:CP3j0omrIoYfl/BsVmqrLBK21EEY2TANqo/yU4KK8L:CPw9Iogps8yI2uEHToqY4U

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

hh.exe

pid process

4220 hh.exe
4220 hh.exe

pid	process
4220	hh.exe
4220	hh.exe

Processes

C:\Windows\hh.exe
"C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\EES Aprende.Química.e.Ingeniería.con.Toño\Userlib\Heat Transfer\Heat Exchangers\NumericalHX.chm"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4220-139-0x00000287C6200000-0x00000287C7877000-memory.dmp

Filesize
22.5MB

Download
memory/4220-145-0x00000287C6200000-0x00000287C7877000-memory.dmp

Filesize
22.5MB

Download