Overview

overview

3

Static

static

3

tmp.exe

windows7-x64

1

tmp.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    10-10-2023 21:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    tmp.exe

  • Size

    904KB

  • MD5

    c45399a88a03246dbe894c1469239e9e

  • SHA1

    ef84227d2c6a0ec1d641693e1a33ec1d12cbe0df

  • SHA256

    28e6e1a63374d095c9a2fe71acc5a384db46a52677ce415373744ce6e60438d4

  • SHA512

    dfc1021656adbc172a9dd9f0fdad70209429d63979159f9c032016aeb5422d6d61a8181d89a69f82a131bc9f5b7b891d6bb7e9873a7d206de26569002c8b8ed1

  • SSDEEP

    24576:9pJecZ/MsGqOgxPs3xMWJFA5OaC9+FNjIZp7:9csdPsCc2w+7s

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\tmp.exe
    "C:\Users\Admin\AppData\Local\Temp\tmp.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2356-0-0x0000000000400000-0x0000000000513000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2356-1-0x0000000000400000-0x0000000000513000-memory.dmp

    Filesize

    1.1MB

    Download