Overview

overview

10

Static

static

10

2632-13-0x...ry.exe

windows7-x64

1

2632-13-0x...ry.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2023, 20:22

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2632-13-0x0000000000400000-0x000000000046B000-memory.exe

  • Size

    428KB

  • MD5

    080b4ba15181ed0129bdbacb0f02ac1a

  • SHA1

    61f016d3e120cd0ab21151f0fd7d1c92797c4bb3

  • SHA256

    7bb5dc3f6a8093fa422c67d531f62f6c4b3e1b41b10b7327670c39a03bdf76ec

  • SHA512

    cd5c155aebbad85be89c512f0d7069ed49b03a8b79bbb978af8d7dc7d42a10dbf7f1ec479ec40b52813df37c5372e705b22b0e67b60437d16ca16fe64d77c86f

  • SSDEEP

    6144:4I6EW0Ks/tB2XuYz40xA89mnP04WRFM17+Cy61Y8nbMJtZ5FIkcQt1N:x6/s/twuYz40xA8Qs48cqCy4bm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2632-13-0x0000000000400000-0x000000000046B000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\2632-13-0x0000000000400000-0x000000000046B000-memory.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads