Analysis
-
max time kernel
118s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20231020-en -
resource tags
-
submitted
21/10/2023, 19:33
General
-
Target
0c1257fc4d2b840e7e46aa51558ab473e11e88e8b9eb4ff648de0869f9bb26c9.exe
-
Size
868KB
-
MD5
10f121877ff08fd66bba6460f51612af
-
SHA1
95940378f53489116801831fe2cbc810b07e6f24
-
SHA256
0c1257fc4d2b840e7e46aa51558ab473e11e88e8b9eb4ff648de0869f9bb26c9
-
SHA512
7f49ec4be624fe0d29df21585e6025a476d4b60350f60f6552e5252a168fd2438f7d92ab54f6fa0de281eaa695095b2fb50cf2177beca303d9c0a3f82862a483
-
SSDEEP
12288:OL/ctHMd/i2Ot/FwtyirBTk1cRCP5zERcNwdwbb:OL/cRM9ift/6yqBTkiRUEeSdQ
Score
8/10
Malware Config
Signatures
-
Downloads MZ/PE file
-
Suspicious behavior: EnumeratesProcesses 13 IoCs
-
Suspicious behavior: LoadsDriver 1 IoCs
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\0c1257fc4d2b840e7e46aa51558ab473e11e88e8b9eb4ff648de0869f9bb26c9.exe"C:\Users\Admin\AppData\Local\Temp\0c1257fc4d2b840e7e46aa51558ab473e11e88e8b9eb4ff648de0869f9bb26c9.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx