Overview

overview

5

Static

static

3

faf8439215...da.exe

windows7-x64

5

faf8439215...da.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    117s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2023, 05:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    faf84392150ee55705028f09483dd5f3cdf0cf6dfca5b90483a6b85eb67246da.exe

  • Size

    1.5MB

  • MD5

    78ebc16d8367fd8eabe8b89f31539705

  • SHA1

    a36b2f9c55a9c182059b06ca5f53212a1b891c22

  • SHA256

    faf84392150ee55705028f09483dd5f3cdf0cf6dfca5b90483a6b85eb67246da

  • SHA512

    94e946873714d69645b55c70b308d2303d074e4eb82dd6fe13b93d70e8abab0f9c8ebb6e5bc4e38998a7f8da227f5132ac2a9bcd37819c7dec506551edff6a58

  • SSDEEP

    24576:inIHxg9+EHuf4LasbAQM+l0Dopqkao/WsKIB/95+KNoVP92rIuD4W5Jt3Ye5viWw:YZ81M5bPhqkaoL95bWVruD4q3Iet7FFE

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 4 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\faf84392150ee55705028f09483dd5f3cdf0cf6dfca5b90483a6b85eb67246da.exe
    "C:\Users\Admin\AppData\Local\Temp\faf84392150ee55705028f09483dd5f3cdf0cf6dfca5b90483a6b85eb67246da.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:1964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1964-0-0x0000000000400000-0x0000000000621000-memory.dmp

    Filesize

    2.1MB

    Download

  • memory/1964-1-0x0000000075660000-0x00000000756A7000-memory.dmp

    Filesize

    284KB

    Download

  • memory/1964-812-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-811-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-814-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-816-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-818-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-820-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-822-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-824-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-826-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-828-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-830-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-832-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-836-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-834-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-838-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-840-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-842-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-844-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-846-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-848-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-850-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-852-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-854-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-856-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-858-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-860-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-862-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-864-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-866-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-868-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-870-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-872-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-2547-0x00000000021A0000-0x0000000002321000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1964-8686-0x0000000002450000-0x0000000002561000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1964-8693-0x0000000000400000-0x0000000000621000-memory.dmp

    Filesize

    2.1MB

    Download

  • memory/1964-8696-0x0000000000400000-0x0000000000621000-memory.dmp

    Filesize

    2.1MB

    Download