ec3c5f87dd51127d36272f399759f9e7493a81e37844827b4b1a99685f8340e7 | Triage

Submit
Reports

Overview

overview

Static

static

3

IHFa.exe

windows7-x64

IHFa.exe

windows10-2004-x64

1

Analysis

max time kernel
24s
max time network
19s
platform
windows10-2004_x64
resource
win10v2004-20231020-en
resource tags

arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
submitted
21-10-2023 11:41

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

IHFa.exe

Resource

win7-20231020-en

agenttesla keylogger persistence spyware stealer trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

IHFa.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

IHFa.exe
Size

691KB
MD5

a5e2855d36d6ce0be8ca37e320b9fc5b
SHA1

f245322d30a9940e8cd90eb6c9a62970a0163223
SHA256

ec3c5f87dd51127d36272f399759f9e7493a81e37844827b4b1a99685f8340e7
SHA512

498f4291d78e0209dc19fde3ba7516ca958c9ef16da96be4c740f3ff7e88dde6835dfaffcd8e4c287f739b98295748cf23103d67633dcb7360c427ae37b8fb0d
SSDEEP

12288:l5b5yzvbYmBH/NBNfkhOp84xsyVjurAgNexeSlZyMg1WgoJUdaJX5dznbeEP:JebY0fNBNfkQp8rSiU4OgoJUM4

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\IHFa.exe
"C:\Users\Admin\AppData\Local\Temp\IHFa.exe"
1⤵
PID:5512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/5512-0-0x0000000075240000-0x00000000759F0000-memory.dmp

Filesize
7.7MB

Download
memory/5512-1-0x00000000006B0000-0x0000000000762000-memory.dmp

Filesize
712KB

Download
memory/5512-2-0x0000000005700000-0x0000000005CA4000-memory.dmp

Filesize
5.6MB

Download
memory/5512-3-0x0000000005150000-0x00000000051E2000-memory.dmp

Filesize
584KB

Download
memory/5512-4-0x00000000050C0000-0x00000000050D0000-memory.dmp

Filesize
64KB

Download
memory/5512-5-0x00000000052F0000-0x00000000052FA000-memory.dmp

Filesize
40KB

Download
memory/5512-6-0x0000000075240000-0x00000000759F0000-memory.dmp

Filesize
7.7MB

Download
memory/5512-7-0x00000000053B0000-0x00000000053CC000-memory.dmp

Filesize
112KB

Download
memory/5512-8-0x00000000053E0000-0x00000000053EC000-memory.dmp

Filesize
48KB

Download

© 2018-2024

Terms | Privacy