Overview

overview

3

Static

static

3

14b9d36d8f...aa.exe

windows7-x64

1

14b9d36d8f...aa.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/07/2023, 20:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    14b9d36d8fcca7f21de66ef1233b38c19deef424582f7988183adf2fe1569eaa.exe

  • Size

    1.1MB

  • MD5

    8220f26dde6901186a268b9f61445964

  • SHA1

    98988f373de302aa58c930788b0561af5d5894f7

  • SHA256

    14b9d36d8fcca7f21de66ef1233b38c19deef424582f7988183adf2fe1569eaa

  • SHA512

    a1523eccfcf7bdd88838f0f451776e01d6caacf02fee7eb5e19afb05ec831c6d15cac4dac7667e9f97911ea17a1926d6614fb3baef6503882b15ec2929456716

  • SSDEEP

    12288:T91mJlDljbNPSoMh8k9fX7L8jdty04z6dum8LU+5qn1lyoK:Tv8P5KhTv6zKdLD5qn18oK

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 4 IoCs
  • Suspicious use of SendNotifyMessage 4 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\14b9d36d8fcca7f21de66ef1233b38c19deef424582f7988183adf2fe1569eaa.exe
    "C:\Users\Admin\AppData\Local\Temp\14b9d36d8fcca7f21de66ef1233b38c19deef424582f7988183adf2fe1569eaa.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4552

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\5XLATO3O\px[1].js
    Filesize

    346B

    MD5

    f84f931c0dd37448e03f0dabf4e4ca9f

    SHA1

    9c2c50edcf576453ccc07bf65668bd23c76e8663

    SHA256

    5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584

    SHA512

    afc3089d932fb030e932bf6414ac05681771051dd51d164f09635ca09cbd8525a52879524b6aa24e972e7766ddf529484cc1ec416de8b61255435a89ba781f8c

    Download Submit

  • memory/4552-133-0x00000000023A0000-0x00000000023A1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4552-156-0x0000000000400000-0x000000000052C000-memory.dmp

    Filesize

    1.2MB

    Download