afbea9050cf76d3a393f4efe786212944c9629e2b11d7dd7939d152397501bb0

Submit
Reports

Overview

overview

Static

static

EES Aprend...ow.chm

windows7-x64

EES Aprend...ow.chm

windows10-2004-x64

EES Aprend...on.chm

windows7-x64

EES Aprend...on.chm

windows10-2004-x64

EES Aprend...ow.chm

windows7-x64

EES Aprend...ow.chm

windows10-2004-x64

EES Aprend...gs.chm

windows7-x64

EES Aprend...gs.chm

windows10-2004-x64

EES Aprend...mi.chm

windows7-x64

EES Aprend...mi.chm

windows10-2004-x64

EES Aprend...cy.chm

windows7-x64

EES Aprend...cy.chm

windows10-2004-x64

EES Aprend...or.chm

windows7-x64

EES Aprend...or.chm

windows10-2004-x64

EES Aprend...rs.chm

windows7-x64

EES Aprend...rs.chm

windows10-2004-x64

EES Aprend...HX.chm

windows7-x64

EES Aprend...HX.chm

windows10-2004-x64

EES Aprend...es.chm

windows7-x64

EES Aprend...es.chm

windows10-2004-x64

EES Aprend...ce.doc

windows7-x64

EES Aprend...ce.doc

windows10-2004-x64

EES Aprend...ce.pdf

windows7-x64

EES Aprend...ce.pdf

windows10-2004-x64

EES Aprend...23.dll

windows7-x64

EES Aprend...23.dll

windows10-2004-x64

EES Aprend...lo.dll

windows7-x64

EES Aprend...lo.dll

windows10-2004-x64

EES Aprend...rs.chm

windows7-x64

EES Aprend...rs.chm

windows10-2004-x64

EES Aprend...es.chm

windows7-x64

EES Aprend...es.chm

windows10-2004-x64

Analysis

max time kernel
35s
max time network
30s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
12-03-2023 20:06

Sharing

Copy URL

Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/external_flow.chm

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/external_flow.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/internal_flow.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/internal_flow.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/regenerator_packings.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/regenerator_packings.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Emissivity/Emissivity_TotHemi.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Emissivity/Emissivity_TotHemi.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fin Efficiency/fin efficiency.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fin Efficiency/fin efficiency.chm

Resource

win10v2004-20230221-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fouling Factors/FoulingFactor.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Fouling Factors/FoulingFactor.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/Heat Exchangers.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Heat Exchangers/NumericalHX.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Minor Losses/minor losses.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Minor Losses/minor losses.chm

Resource

win10v2004-20230221-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.doc

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral22

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.doc

Resource

win10v2004-20230220-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.pdf

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation Properties/gas emittance.pdf

Resource

win10v2004-20230220-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral25

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/F3d7123.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/F3d7123.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/MonteCarlo.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/MonteCarlo.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/view factors.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Radiation View Factors/view factors.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Reference Tables/Reference Tables.chm

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Reference Tables/Reference Tables.chm

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

EES Aprende.Química.e.Ingeniería.con.Toño/Userlib/Heat Transfer/Convection/free_convection.chm
Size

323KB
MD5

11c7015e9223b451df7399e831c13e03
SHA1

2a4a3c9255ff1befd28691dc39325116dac3ea6b
SHA256

c35be34255292feacf73c37b87646965865139047a29de7555aa30338d9601b5
SHA512

35c97018c59fd1645f0ca407b491c2f5195a77978cc6ecf5aab762517cc9cff54666b9bfe755e05e75c0a3486f3e3cc89d5dae09d681db269e5d7503bc31f268
SSDEEP

6144:7cqV7ty9o/q/ALgb7Cpl7iZWmXImpb7Us3G+x8P1WU+ZtLQM8Z:w4tyq/q/ALaCpl72WNmBRaWU+Zdy

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 1 IoCs
adware spyware

Modify Registry
T1112

Processes:

hh.exe

description ioc process

Key created \REGISTRY\USER\S-1-5-21-1283023626-844874658-3193756055-1000\Software\Microsoft\Internet Explorer\Main hh.exe
Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

hh.exe

pid process

1612 hh.exe
1612 hh.exe

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-1283023626-844874658-3193756055-1000\Software\Microsoft\Internet Explorer\Main	hh.exe

pid	process
1612	hh.exe
1612	hh.exe

Processes

C:\Windows\hh.exe
"C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\EES Aprende.Química.e.Ingeniería.con.Toño\Userlib\Heat Transfer\Convection\free_convection.chm"
1⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1612

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1612-84-0x000007FFFFF90000-0x000007FFFFFA0000-memory.dmp

Filesize
64KB

Download