Overview

overview

10

Static

static

10

Hex-Rays I...te.exe

windows10-2004-x64

1

Hex-Rays I...64.exe

windows10-2004-x64

1

Hex-Rays I...da.exe

windows10-2004-x64

1

Hex-Rays I...64.exe

windows10-2004-x64

1

Hex-Rays I...ch.exe

windows10-2004-x64

1

Hex-Rays I...at.exe

windows10-2004-x64

1

Hex-Rays I...64.exe

windows10-2004-x64

1

Hex-Rays I...ph.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    6s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-07-2023 22:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated/ida.exe

  • Size

    4.0MB

  • MD5

    feb31c52b751255b3bd42a245b850110

  • SHA1

    b714ac4d8cc65d248f6be4a258be6b2e0386223b

  • SHA256

    ca77b4cf8e18d7b153a424e5591d759d5bdce0a5d4b9f21441dce67c32707ced

  • SHA512

    5aa93de0d3c0a97bc632b5ac5c9d0f05d62aacc2c4c825f840c6edc212361386a9b0914d7ad523ceb5e2d5db429c300297ff5111527e2d1780c75e57b6091ec7

  • SSDEEP

    49152:69EJ6ZQOajI9/7MlHrbh/MG7y72fl1cDQK0czmoPgqXfUnpzjfwRwaw5ArwuJyNp:4Zt8HyG7g2fly9ljwCqDolZEKuSmD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated\ida.exe
    "C:\Users\Admin\AppData\Local\Temp\Hex-Rays IDA Professional Advanced Floating And Decompiler Full Activated\ida.exe"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3396-133-0x00007FF8AEE10000-0x00007FF8AF366000-memory.dmp

    Filesize

    5.3MB

    Download

  • memory/3396-134-0x00007FF6B4340000-0x00007FF6B473F000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/3396-135-0x00000254F5F90000-0x00000254F5FA0000-memory.dmp

    Filesize

    64KB

    Download