Analysis
-
max time kernel
60s -
max time network
33s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
18/04/2023, 13:08
Behavioral task
behavioral1
Sample
572-63-0x0000000000400000-0x0000000000479000-memory.exe
Resource
win7-20230220-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
572-63-0x0000000000400000-0x0000000000479000-memory.exe
Resource
win10v2004-20230220-en
2 signatures
150 seconds
General
-
Target
572-63-0x0000000000400000-0x0000000000479000-memory.exe
-
Size
484KB
-
MD5
fa9f8df22ec3cc80e96471f6b2f037e4
-
SHA1
bf5a667d2418163ba9efb8ff390e55572dec9987
-
SHA256
a372c4573c539b54fc208fbd2e5540f6c2c2ae3931d0468d1a4c2f48292cdf84
-
SHA512
f6113fbde1aa6faa69b8a55a33d7031e6a7e6331794cd622e0a9ae07515c3e0d5f792e645a7a57ead2b6fdd6ce5a64e72515f76bdc203b07f941a5e429956236
-
SSDEEP
12288:88wFE98FsRkv/ta/GkcenDbGI4ovU6zKjku:rHbw6zKjF
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 1696 572-63-0x0000000000400000-0x0000000000479000-memory.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 1696 572-63-0x0000000000400000-0x0000000000479000-memory.exe