Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07/08/2023, 07:30

General

  • Target

    528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe

  • Size

    5.1MB

  • MD5

    baf532f71053aefc7007eaabd58a2655

  • SHA1

    ea495945a79317b0053d564abf2e13a256939974

  • SHA256

    528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414

  • SHA512

    a4928e072f145266f47d1f257788aad84465809cecdb2adae94c13ee08ee9254e564a339d0a9d31b5427c2813e91b9e34877c90cb9e5c614506f6d2338f28078

  • SSDEEP

    6144:Vi+/g/tuMQlzVntVKJAJiJOJRJqJD5JYJUJZJCJ2JBJQJZJBJfJHsJRJGJ0JGJHX:Vv/Iu3zxtVpy+

Score
10/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe
    "C:\Users\Admin\AppData\Local\Temp\528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe"
    1⤵
    • Enumerates connected drives
    • Suspicious use of SetWindowsHookEx
    PID:2440

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2440-55-0x0000000002160000-0x0000000002170000-memory.dmp

          Filesize

          64KB

        • memory/2440-56-0x0000000002160000-0x0000000002170000-memory.dmp

          Filesize

          64KB