Analysis
-
max time kernel
141s -
max time network
33s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
14-06-2023 20:04
Behavioral task
behavioral1
Sample
KinnAgent200820160818bak.exe
Resource
win7-20230220-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
KinnAgent200820160818bak.exe
Resource
win10v2004-20230220-en
1 signatures
150 seconds
General
-
Target
KinnAgent200820160818bak.exe
-
Size
4.4MB
-
MD5
368af498e9aec377b0d18b59473114c9
-
SHA1
b0318b1fd25454eeaf1ce51036d30ee155771269
-
SHA256
bd3190fab963fd090da485e1f3cbd0534b0598fef95bcfd2f1f6fa7b5d0894ed
-
SHA512
3d2869503da66d28f1110708aec82ee19fb6c8c6d888c220e4910e371304eeacbd717a8228dde74d45316d008d8cdebb6270fc8291989990916b26f5eb0ada4f
-
SSDEEP
98304:yLCWIsw3EpnNSJYjF1TnvrbBT9ZLc2LU45sfGB6Ti/wnzUWv0axSQ:txUpn+Y51zvvBjocveeBijng0tSQ
Score
1/10
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
KinnAgent200820160818bak.exepid process 1324 KinnAgent200820160818bak.exe 1324 KinnAgent200820160818bak.exe 1324 KinnAgent200820160818bak.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1324-54-0x0000000000400000-0x0000000001AAF000-memory.dmpFilesize
22.7MB
-
memory/1324-55-0x0000000000400000-0x0000000001AAF000-memory.dmpFilesize
22.7MB
-
memory/1324-56-0x0000000000400000-0x0000000001AAF000-memory.dmpFilesize
22.7MB
-
memory/1324-57-0x0000000000400000-0x0000000001AAF000-memory.dmpFilesize
22.7MB
-
memory/1324-58-0x0000000000400000-0x0000000001AAF000-memory.dmpFilesize
22.7MB
-
memory/1324-59-0x0000000000220000-0x0000000000221000-memory.dmpFilesize
4KB
-
memory/1324-60-0x0000000000400000-0x0000000001AAF000-memory.dmpFilesize
22.7MB
-
memory/1324-62-0x0000000000220000-0x0000000000221000-memory.dmpFilesize
4KB