601d63103e7d4b41e066db1a99a0c3f353993751a87ca8460a39d33e8ee8af94 | Triage

Analysis

max time kernel
150s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20231127-en
resource tags

arch:x64arch:x86image:win10v2004-20231127-enlocale:en-usos:windows10-2004-x64system
submitted
11-12-2023 06:56

Sharing

Report Analysis Logs

General

Target

Top Password/ZPRHelp.chm
Size

65KB
MD5

29bdb828e38a6e2a172327cad250e5d2
SHA1

9fc8c8579af65cfdf378b4027e8468aa255131f4
SHA256

9d74c413a9eec349cfa1ffb141ff28f156f53fa4f716003f5113d7cbf5f31cd7
SHA512

081c36ba1b9cbd4ece126bc43c10373fe66e430df3f7a34594f42f225f1585e316b465bb901076811fd5d806a109a813e1eee721d6264a08cf813f2bc4e51ed9
SSDEEP

1536:R5u4S6YUOhv1n4K979gKYuliYi3h+hRjLdfsrwuwx+ODVJU:/u4Jw79g1Lxh+hRjLRsrsxj6

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1760	hh.exe
1760	hh.exe

C:\Windows\hh.exe
"C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\Top Password\ZPRHelp.chm"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1760

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads