020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8

Analysis

max time kernel
142s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
08/10/2023, 13:22

Target

020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8.exe
Size

4.8MB
MD5

a8c1b98f016a62556d71506fa30f385a
SHA1

2c65790a5d0a73e4cc9034c9f4276f83266c2831
SHA256

020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8
SHA512

8847f0f93cf5ac15026228314b77543bda978492f54cf9f8548c8a69340ea5e8fd07ae2b86dea2b1a2e0e6bf25f920c3c0632a9f243746bd14e577dc6b5b4edb
SSDEEP

98304:It75bFXj4csTnmqmTouxtV7JQ31RCkvArtzYU:UpBeXmTFVSwz

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3628	020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8.exe
3628	020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8.exe

C:\Users\Admin\AppData\Local\Temp\020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8.exe
"C:\Users\Admin\AppData\Local\Temp\020afc197e3d6a4a6e846fce254ede04cfe926f576abcc2c3026c1c69906b7a8.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3628

memory/3628-0-0x0000000000400000-0x00000000008FC000-memory.dmp

Filesize
5.0MB

Download
memory/3628-1-0x0000000003650000-0x0000000003651000-memory.dmp

Filesize
4KB

Download
memory/3628-3-0x00000000033C0000-0x00000000033C1000-memory.dmp

Filesize
4KB

Download
memory/3628-2-0x0000000003690000-0x0000000003691000-memory.dmp

Filesize
4KB

Download
memory/3628-4-0x0000000003F00000-0x0000000003F01000-memory.dmp

Filesize
4KB

Download
memory/3628-5-0x00000000033D0000-0x00000000033D1000-memory.dmp

Filesize
4KB

Download
memory/3628-8-0x0000000003E80000-0x0000000003E81000-memory.dmp

Filesize
4KB

Download
memory/3628-9-0x0000000000400000-0x00000000008FC000-memory.dmp

Filesize
5.0MB

Download