827c138cf360e735ebbb3908eda2c8d49e910937968c8fe5aeef86bf401c59ac | Triage

Analysis

max time kernel
120s
max time network
123s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
18/08/2023, 21:33

Sharing

Report Analysis Logs

General

Target

ceshi.exe
Size

820KB
MD5

d2ff5e21ad741d18cd0d2739f0ed2ffc
SHA1

b8c939295941ab323d49a0e66f03494eedc05134
SHA256

827c138cf360e735ebbb3908eda2c8d49e910937968c8fe5aeef86bf401c59ac
SHA512

63333888a03c850b6b90d07edb56551103350cff5ed741f6a2dfb6aae0773c931c324eac98cd85b500cc4efb1bb5ffe6bc3e0203c01ac36338ef1c532eb17e49
SSDEEP

12288:JvxLxB259yRbxxKy2uDJjYRHRwFYvVTW1HNktglgaAWtzW6P:JvxL725cRVxXlDNYRTIkt+gvi

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2164	ceshi.exe
2164	ceshi.exe

C:\Users\Admin\AppData\Local\Temp\ceshi.exe
"C:\Users\Admin\AppData\Local\Temp\ceshi.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads