Analysis
-
max time kernel
31s -
max time network
33s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
29-05-2023 06:56
Behavioral task
behavioral1
Sample
293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e.exe
Resource
win10v2004-20230220-en
General
-
Target
293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e.exe
-
Size
272KB
-
MD5
33c731e17c78450a8bd4c0feb3af3e6a
-
SHA1
c46775f3b3323eee5213e29e50e5116ad113e603
-
SHA256
293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e
-
SHA512
4f7ba2d3ef34bc6b4a14b5c9ad753ce32a65b1f2cf114ddc54eb1114eb5895b7fcd64af53292c4e20167f781f138457f96609c3f6d12b4a217565043929a3359
-
SSDEEP
6144:aoTpKQdHJle5nKp49fWgMafc3BQp9W5a:aIr9re5nKp48hycx49W5
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e.exepid process 1196 293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e.exe 1196 293488f10fb9907db4ef8634b1b36896231eb6cc87a987f0b2a858cf3f89a01e.exe