Overview

overview

5

Static

static

3

c8f92159bb...0d.exe

windows7-x64

5

c8f92159bb...0d.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2023 01:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c8f92159bbc82311124af0c8d061084345dcaa37e23ab369645810bc502b580d.exe

  • Size

    1.9MB

  • MD5

    e2252983af394bbce631e5ab0382dd05

  • SHA1

    774466f3efcaa08d6513c14a3e87a3fd3921ac99

  • SHA256

    c8f92159bbc82311124af0c8d061084345dcaa37e23ab369645810bc502b580d

  • SHA512

    51ae0a727efcf2542e3a75a8c324db57227d264cc232d232dba1f26e7d06618056b59f502dd4c1873300b8c2bfcbc1593c8aa216073d3c818dfb8dcfa7a5acf7

  • SSDEEP

    24576:TLhdAQJ6cJGGRY/cO+FSTsM415tD6w+wstLP/LUFjY71V3DL9gTbzjD9lt:ZiCY/sFSVUPDV+n7LGczL4/jD93

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c8f92159bbc82311124af0c8d061084345dcaa37e23ab369645810bc502b580d.exe
    "C:\Users\Admin\AppData\Local\Temp\c8f92159bbc82311124af0c8d061084345dcaa37e23ab369645810bc502b580d.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3020-0-0x0000000000400000-0x000000000073B000-memory.dmp

    Filesize

    3.2MB

    Download

  • memory/3020-1-0x00000000772C0000-0x0000000077307000-memory.dmp

    Filesize

    284KB

    Download

  • memory/3020-812-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-811-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-814-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-816-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-818-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-820-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-822-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-824-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-826-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-828-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-830-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-832-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-834-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-836-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-842-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-840-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-838-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-848-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-846-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-844-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-850-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-854-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-852-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-856-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-858-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-862-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-860-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-864-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-868-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-866-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-870-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-872-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-2547-0x00000000023E0000-0x0000000002561000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/3020-8692-0x0000000000400000-0x000000000073B000-memory.dmp

    Filesize

    3.2MB

    Download

  • memory/3020-8693-0x0000000002570000-0x0000000002681000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3020-8695-0x0000000000400000-0x000000000073B000-memory.dmp

    Filesize

    3.2MB

    Download