Overview

overview

7

Static

static

7

10800e8064...74.exe

windows7-x64

7

10800e8064...74.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    151s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    16/11/2023, 14:49

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    10800e806419250b520936e9b382d685271549d4ef7f911f2edcef37bc7b8c74.exe

  • Size

    1.5MB

  • MD5

    ba0bae2ed6c5592b52cb46fcfada1173

  • SHA1

    d5e28704f73b625782caed0b12dfe62a36731f4a

  • SHA256

    10800e806419250b520936e9b382d685271549d4ef7f911f2edcef37bc7b8c74

  • SHA512

    39a2aafa10e1ad401190678520719422957ad46248f0c0ede74dbd2d829ae9118b4378a161d0591f39075ba0f1af4a426857fd71dd2953f08f27940616377bdf

  • SSDEEP

    49152:3g/8dUJYfGPX7WPFrIN3izy1w2pqXWQrZbnske5Yv2Z10W:3iPJYfGPX7WPdIxiz6w2pqXWQrZbnsze

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\10800e806419250b520936e9b382d685271549d4ef7f911f2edcef37bc7b8c74.exe
    "C:\Users\Admin\AppData\Local\Temp\10800e806419250b520936e9b382d685271549d4ef7f911f2edcef37bc7b8c74.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1056

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9G8QJ0N4\KHZOZ3PS.htm
          Filesize

          432KB

          MD5

          a38338046dc2ca1247f384c6acc3229d

          SHA1

          ebf8ac4cf72fb2871fee50cc93db2233b6be85ba

          SHA256

          75afd70d9938ea7f1e2e20dfb1a0b3e1dee4fc4894b3f2f1e105aac6b50bbde7

          SHA512

          7aceb6613d9b0bf8b2c672413d6fa2150427f78de9cfb0ab549966c6ea47783f38f20dea313d0f65bb592cdfff473aa23de15400680147b1e3da6e047501fd45

          Download Submit

        • memory/1056-0-0x0000000000400000-0x0000000000617000-memory.dmp

          Filesize

          2.1MB

          Download

        • memory/1056-13-0x0000000000400000-0x0000000000617000-memory.dmp

          Filesize

          2.1MB

          Download