Analysis
-
max time kernel
140s -
max time network
34s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
14-06-2023 20:01
Behavioral task
behavioral1
Sample
b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c.exe
Resource
win10v2004-20230220-en
General
-
Target
b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c.exe
-
Size
709KB
-
MD5
9afdd201b845bbe99865d5b0496b57ea
-
SHA1
bb674dccfd4f7bff8ab79f55f59febcbb93c68b1
-
SHA256
b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c
-
SHA512
f90cea48f8a341656855abac2066b0d38e05b158dab6787a87583c7ece5f9e9b31bfa520124f6aa9d3e8bc11976a44e33388bb417b75a8ce904cb606c1a94776
-
SSDEEP
12288:1Dk+EGgVPlD/yegDJdE6KeaqhJHvkPHJiVqTaB01GqQb4atg3vOfZkzASuC0:G+xgVPlryeIdE6xhJcPHJiV93fbSO+Md
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c.exepid process 1700 b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c.exe 1700 b495be62cfe4f5ce117ff80c46950261aab5a95d5f38903f1e8931bff159bb0c.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1700-54-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-55-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-56-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-58-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-59-0x0000000000230000-0x0000000000231000-memory.dmpFilesize
4KB
-
memory/1700-61-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-62-0x0000000000230000-0x0000000000231000-memory.dmpFilesize
4KB
-
memory/1700-67-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-68-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-69-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-70-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB
-
memory/1700-71-0x0000000000400000-0x000000000060C000-memory.dmpFilesize
2.0MB