Overview

overview

10

Static

static

10

decode_c84...d9.exe

windows7-x64

1

decode_c84...d9.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230621-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/06/2023, 13:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    decode_c840eacf78fab9118d8746c47c4c033b13be456fc6cd7350c07b5dac352c3ed9.exe

  • Size

    481KB

  • MD5

    d2f4bcb2b72f7f044c5c463d59b7d532

  • SHA1

    c2a036d251fad0a608a07459a56874d14fad0aaf

  • SHA256

    92e494319d7ee8a055f2fb64bd5f3ed051877289a0948f1e53b485799613b16b

  • SHA512

    b13dff2d9863fbdd5c6a6b49c5946b8fb2c26906aa464e99a4127cf53f626b6e38553d97bf449b31dc77bcdd330bc21a18dcbe2cb7081a4fa4475afea9af3f2d

  • SSDEEP

    12288:PRXxReZj3WZfj/2eSseWFaIe2+f8CL47bs/Zf2BDU:Px7cyF2eSsewS8W47eZO

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\decode_c840eacf78fab9118d8746c47c4c033b13be456fc6cd7350c07b5dac352c3ed9.exe
    "C:\Users\Admin\AppData\Local\Temp\decode_c840eacf78fab9118d8746c47c4c033b13be456fc6cd7350c07b5dac352c3ed9.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\ProgramData\remcos\logs.dat
    Filesize

    144B

    MD5

    7945ed60196192c9ed2a9d40f54e0cee

    SHA1

    28621dcf221b48b86defd9d2f3309c49029e2986

    SHA256

    634d714b9b9461bab73e517f965d5e14b021a0cf596ceb06da0e042373b1f1d7

    SHA512

    9af7a817f59d48a8e9fb084feaec7742659fdc4ae8fd4a9750604b2664b466c942f224010b54af414fa8992d7b37f0ada8e97e1f2a96a055f09bb8e3d26ddfe3

    Download Submit