Analysis
-
max time kernel
146s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
08-06-2023 20:22
Behavioral task
behavioral1
Sample
142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exe
Resource
win10v2004-20230220-en
General
-
Target
142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exe
-
Size
4.7MB
-
MD5
7f92564c47ca1c40104be6f5b6c41d52
-
SHA1
097514af750226998408d9ad7485c1e551d105b5
-
SHA256
142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b
-
SHA512
8fd34b9cb63cf4d6fe909c37eed82e01ac26cf83a914530f9c01f3e108f35e67d128639b78a9b7e0aa9c32ce224a448feb3c8648ddff76b571a50e88285d0de2
-
SSDEEP
98304:Y7qwHCXPqr8fXv4ktucen7NKuQ7cOAcYE5+HXfxTAbEauxQZD+n4Di:Y7+XBfXkLxA7PoGyPxTypw4D
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exepid process 1112 142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exe 1112 142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exe 1112 142e01b4975e321578e79a8f97e43eac09d1e05e9bbd2974b2827fe670d9425b.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1112-133-0x0000000000400000-0x0000000001355000-memory.dmpFilesize
15.3MB
-
memory/1112-134-0x0000000000400000-0x0000000001355000-memory.dmpFilesize
15.3MB
-
memory/1112-135-0x0000000000400000-0x0000000001355000-memory.dmpFilesize
15.3MB
-
memory/1112-136-0x0000000000400000-0x0000000001355000-memory.dmpFilesize
15.3MB
-
memory/1112-137-0x0000000000400000-0x0000000001355000-memory.dmpFilesize
15.3MB
-
memory/1112-138-0x0000000001650000-0x0000000001651000-memory.dmpFilesize
4KB
-
memory/1112-139-0x0000000000400000-0x0000000001355000-memory.dmpFilesize
15.3MB
-
memory/1112-140-0x0000000001650000-0x0000000001651000-memory.dmpFilesize
4KB