Overview

overview

5

Static

static

3

0a4c7da6b3...f8.exe

windows7-x64

5

0a4c7da6b3...f8.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2023, 05:37

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0a4c7da6b3e847e4024b813407b905d5f1768165e5501622fed71ee5483926f8.exe

  • Size

    1.4MB

  • MD5

    394f3a6b994277004ed9c564e17151f9

  • SHA1

    0f95475cc04ac9a60081a86ac1ce2c875770017d

  • SHA256

    0a4c7da6b3e847e4024b813407b905d5f1768165e5501622fed71ee5483926f8

  • SHA512

    51e4430e2611b3310629fb82ee6161eb7ce0201f4f4ab0a3d483e58acbeeb4b0fb16661f5f4f856f04a91c59694ceaaddd0f76eed00c166625c2c2d641b0219e

  • SSDEEP

    24576:40vAvPHE+0pE/A+kTCO8LDG4XFy1ugXcK9+xkZDEGkVTaoy:YfE+0pEMT98PTXFyAgXL+UEk

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 64 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0a4c7da6b3e847e4024b813407b905d5f1768165e5501622fed71ee5483926f8.exe
    "C:\Users\Admin\AppData\Local\Temp\0a4c7da6b3e847e4024b813407b905d5f1768165e5501622fed71ee5483926f8.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:1664

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1664-0-0x0000000000400000-0x00000000005F2000-memory.dmp

          Filesize

          1.9MB

          Download

        • memory/1664-1-0x0000000075BC0000-0x0000000075C07000-memory.dmp

          Filesize

          284KB

          Download

        • memory/1664-811-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-812-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-814-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-816-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-818-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-820-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-822-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-824-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-826-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-828-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-830-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-832-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-834-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-836-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-838-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-840-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-842-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-844-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-846-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-848-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-850-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-852-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-854-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-856-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-858-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-860-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-862-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-864-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-866-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-868-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-870-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-872-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-2547-0x0000000002170000-0x00000000022F1000-memory.dmp

          Filesize

          1.5MB

          Download

        • memory/1664-8686-0x0000000002300000-0x0000000002411000-memory.dmp

          Filesize

          1.1MB

          Download

        • memory/1664-8693-0x0000000000400000-0x00000000005F2000-memory.dmp

          Filesize

          1.9MB

          Download

        • memory/1664-8695-0x0000000000400000-0x00000000005F2000-memory.dmp

          Filesize

          1.9MB

          Download

        • memory/1664-8699-0x0000000000400000-0x00000000005F2000-memory.dmp

          Filesize

          1.9MB

          Download