d0f88eac6605fd56dba810ab447c5ccb620dddd5ac41f24e96d8c5c539c988b5 | Triage

Analysis

max time kernel
142s
max time network
164s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
11/05/2023, 16:20

Sharing

Report Analysis Logs

General

Target

Release no_cpp/encrypt.exe
Size

52KB
MD5

7d400a514eebececabc78541fe5cb5e4
SHA1

3831b4dd3259ac482d6776c0e22f2fd6c31c8b92
SHA256

a0893cfd654623203704514820c48936adbad05ef8ebeafa05a574444580de85
SHA512

cb98dd332a842e234fda73b945cd50c9bec1f365541056591ad30a9bb5aebafdd6e85d97e420c6bc57e6564189915f97edd442be3135a0141cfd92929622f06b
SSDEEP

768:tG1A+6jAfJWRTZMouj8Poq2DqqqqwkLD3UxmEKX:w1AncfJ8Poq2DqqqqymEw

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3880	encrypt.exe
3880	encrypt.exe

C:\Users\Admin\AppData\Local\Temp\Release no_cpp\encrypt.exe
"C:\Users\Admin\AppData\Local\Temp\Release no_cpp\encrypt.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads