Overview

overview

3

Static

static

3

smfw.exe

windows7-x64

1

smfw.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    127s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/08/2023, 22:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    smfw.exe

  • Size

    6.7MB

  • MD5

    375d47529aeb5014e4a4c0111b18ab69

  • SHA1

    7dad0cc276121c5a2580a09912d27c3d7eb9d71e

  • SHA256

    5da706bb84ce318de028d3148aa7f110cd88026f5a336f7d45f3aa46841c93d1

  • SHA512

    48fea8c4da70ffad357078410b51556cd1acd609268148cd099ea5d8f5a7d3d54ff7207bdd8a37c33921e6fb8af7956b7b6e86dba7c393e7c4f74a764a0f6930

  • SSDEEP

    196608:AAqFLzCSpMlcYjvPFfJVQ+0G8azOkHlZGro:AAjSmlcOnFxTwazOkFZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\smfw.exe
    "C:\Users\Admin\AppData\Local\Temp\smfw.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:4740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4740-133-0x0000000000400000-0x0000000000FDC000-memory.dmp

    Filesize

    11.9MB

    Download

  • memory/4740-134-0x0000000001290000-0x0000000001291000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-135-0x00000000012B0000-0x00000000012B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-136-0x00000000012C0000-0x00000000012C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-137-0x00000000012F0000-0x00000000012F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-138-0x0000000001310000-0x0000000001311000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-139-0x0000000001620000-0x0000000001621000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-140-0x0000000001630000-0x0000000001631000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4740-141-0x0000000000400000-0x0000000000FDC000-memory.dmp

    Filesize

    11.9MB

    Download

  • memory/4740-144-0x0000000000400000-0x0000000000FDC000-memory.dmp

    Filesize

    11.9MB

    Download