Analysis
-
max time kernel
139s -
max time network
155s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
-
submitted
16/08/2023, 20:13
General
-
Target
a4567aa69becce9a57e043f2d17936626e6027f0c61ffc5afe2c0b2bf7575396.exe
-
Size
3.4MB
-
MD5
e400cce11783202cb3bfe09bfea7cb15
-
SHA1
d49cf661d258a417a81cce3ed0d3830e398bd578
-
SHA256
a4567aa69becce9a57e043f2d17936626e6027f0c61ffc5afe2c0b2bf7575396
-
SHA512
6b73c43dbf62ff0e7d24e316b74998d79c86600abe71d4b908d74ab0d2163c452b018654b6ff2a4d735a1436c7465d529c844b055b7b91931ab9259f788a5f81
-
SSDEEP
49152:LRkwEsT0Av/PeUx5rxuzr+xAfovAF6RKc7jjx+29uWV9D489O:t3Eslv3eUx5rkaAAvAF6RKGj191PM+O
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious behavior: EnumeratesProcesses 18 IoCs
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\a4567aa69becce9a57e043f2d17936626e6027f0c61ffc5afe2c0b2bf7575396.exe"C:\Users\Admin\AppData\Local\Temp\a4567aa69becce9a57e043f2d17936626e6027f0c61ffc5afe2c0b2bf7575396.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx