Analysis
-
max time kernel
129s -
max time network
35s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
31-03-2023 17:17
Static task
static1
Behavioral task
behavioral1
Sample
winrar-x64-621es.exe
Resource
win7-20230220-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
winrar-x64-621es.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
13 signatures
150 seconds
General
-
Target
winrar-x64-621es.exe
-
Size
3.5MB
-
MD5
db5aea690500b898cb30e1b149e3bcb2
-
SHA1
2de5f136a7b94124e2b15a9c9185637bea503da4
-
SHA256
89b5ec3e64b8c276195a14e762439b78594a267082e6875f70c873ef6836be88
-
SHA512
627e0cb9da2839abfadecddda1ed10c52a2b56140a338750549d8163d0f7596b2bae8f83336c05446f20333d593179f81efc6ac18a31699aa85e898381d14122
-
SSDEEP
98304:QXBOBfKPMXjTKf8zCgs1aArGgaZ+0Vkvis1:QX/PwifXaArMFois1
Score
1/10
Malware Config
Signatures
-
Processes:
winrar-x64-621es.exedescription ioc process Key created \REGISTRY\USER\S-1-5-21-1914912747-3343861975-731272777-1000\Software\Microsoft\Internet Explorer\Main winrar-x64-621es.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
winrar-x64-621es.exepid process 1036 winrar-x64-621es.exe 1036 winrar-x64-621es.exe