Overview

overview

7

Static

static

7

50f5275462...0f.exe

windows7-x64

1

50f5275462...0f.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    77s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    30-05-2023 07:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    50f5275462a3d60eb739ba23f6a2a39091ff56b607a538588d630f0e0c77c70f.exe

  • Size

    1.3MB

  • MD5

    d1a280a1a6bc91cadbc27a8fb17ef25c

  • SHA1

    80b42505491a3096493c5052386df0fdd000758d

  • SHA256

    50f5275462a3d60eb739ba23f6a2a39091ff56b607a538588d630f0e0c77c70f

  • SHA512

    40c21013f407b960ab98d50c0633aeed6eaecc553d3b0a4f2c0466826479f0f41c6af602ba6e8cb412e54ebc0488d5fe076010c9fd387d110db1bd88a3fad4ed

  • SSDEEP

    24576:4106qZfmpVHSFhc+t74kn7eNL/Q4c47X87kQ9DjzKC7o9SKcq9Fackiv:TZfYpSFhD7r6NLd/7X8oaP14Fac

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\50f5275462a3d60eb739ba23f6a2a39091ff56b607a538588d630f0e0c77c70f.exe
    "C:\Users\Admin\AppData\Local\Temp\50f5275462a3d60eb739ba23f6a2a39091ff56b607a538588d630f0e0c77c70f.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Update.ini
    Filesize

    442B

    MD5

    d3ed8cb89e3bc5d284f3ac06e634238a

    SHA1

    5d4e9c5664eaa919217a3e1ad929625e99720faf

    SHA256

    60148b1f07d6b255907681c524932faa62f27d49ded0df34a61f771f580842a6

    SHA512

    1943e799b453fbe9e2c6a1cc1eccb662e83e3ba10086c92705c9c2183af6cab219a8fa1b77fbefc8f5d76675354a40c577743f4c2b326a8033b32ca6106e08e0

    Download Submit
  • memory/1444-60-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-61-0x0000000000240000-0x0000000000241000-memory.dmp
    Filesize

    4KB

    Download
  • memory/1444-106-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-115-0x0000000000240000-0x0000000000241000-memory.dmp
    Filesize

    4KB

    Download
  • memory/1444-120-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-125-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-130-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-141-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-149-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-159-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download
  • memory/1444-261-0x0000000000400000-0x00000000008C2000-memory.dmp
    Filesize

    4.8MB

    Download