Analysis
-
max time kernel
141s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20230712-en -
resource tags
arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system -
submitted
23/07/2023, 02:14
Behavioral task
behavioral1
Sample
2900-70-0x0000000000400000-0x0000000000472000-memory.exe
Resource
win7-20230712-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2900-70-0x0000000000400000-0x0000000000472000-memory.exe
Resource
win10v2004-20230703-en
2 signatures
150 seconds
General
-
Target
2900-70-0x0000000000400000-0x0000000000472000-memory.exe
-
Size
456KB
-
MD5
ca73387a0f8b9e91f6b990ce3e581657
-
SHA1
9f40b2fe84b5ff3cb9e21cb9a730cc5f928636b0
-
SHA256
6eb2042d45c740f78f0dd850a2fbaea1ee731dcd92bb511c3387fcfdd14649a7
-
SHA512
b99a0bbb9837cf8d3070ebfa674a1b7984314789dd6666be94c529c2032046fb250c6a243c5b5b39d0569a9e24c5067699425a1183881edc915d906abc6bb3e0
-
SSDEEP
6144:K6VGjHmfIb/bVTvGw79s2CsxKhcZKz9mLT6x/G/8xmIaCMBW1syGMlT+zZeav9zz:JVGVbzVTvd5/8xmIaCMBUt8ztJ0oKQi
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 880 2900-70-0x0000000000400000-0x0000000000472000-memory.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 880 2900-70-0x0000000000400000-0x0000000000472000-memory.exe