Analysis
-
max time kernel
153s -
max time network
169s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
-
submitted
03-08-2023 12:43
General
-
Target
Setup_FileViewPro.exe
-
Size
1.3MB
-
MD5
5cb079f8ec885592c5538dbe0362d593
-
SHA1
a5702ea5dfd73c619ad2625e645b93e0a39b1451
-
SHA256
532a7d66259842f4a710ea7bc6dc48547de371bb69fc842f53934876e787efb8
-
SHA512
8787a51f3e7eacfd5f507abdfacd58aef34a704d01f84c05ec8074cb77318d3b14223ff2ca3da399633ef82d3529266bcf3bb174bf746450697117915641fb90
-
SSDEEP
24576:Ch6SVFzDl6eZmL4v9IoYOlrQ14T1+G05hKwzlXX8l8whkwBY2/+WLHkOU:q6UXtvDz85hK8XM8rcY/OU
Score
1/10
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 7 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\Setup_FileViewPro.exe"C:\Users\Admin\AppData\Local\Temp\Setup_FileViewPro.exe"1⤵
- Suspicious use of SetWindowsHookEx
-
C:\Windows\SysWOW64\werfault.exewerfault.exe /h /shared Global\49a13a19deeb420abe57071c03d7ed84 /t 2288 /p 36041⤵
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵
-
C:\Users\Admin\AppData\Local\Temp\Setup_FileViewPro.exe"C:\Users\Admin\AppData\Local\Temp\Setup_FileViewPro.exe"1⤵
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
553B
MD54884350d5c2546d2aecde221204ac0c5
SHA19a0bd23b135376212d51e801373878a2b3c51bc2
SHA256b67a04939823d223403b953d671c726f427294e4fb41625adb1d064d48656aaa
SHA51291bb2140e780819a57524cae855cf4f6b5570217842c9e10aa40e30cbc766e09338024cff89a4444712dc7dda2926205914d1d599b23bfb82922c23b486b6d24