Overview

overview

3

Static

static

3

0fd9492b78...ae.exe

windows7-x64

1

0fd9492b78...ae.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    80s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 07:45

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0fd9492b785971917d9bac11f63d38ae.exe

  • Size

    425KB

  • MD5

    0fd9492b785971917d9bac11f63d38ae

  • SHA1

    26e0a3abfe774d704f4b2d2b949c2da364c12ccf

  • SHA256

    fd80d74cbc695a143b7b60acc9370bd1a97ccc44f939e218ac6463154aa503d0

  • SHA512

    8674222104c7cd407bafc6f289d3f56f6fd2d8ba039d9df5a2b9e32e0f5df5de5fde92be8606d9169b584d3d0aa2cfab8602a67de912e8f86c770183a747c05c

  • SSDEEP

    768:YVfKyI7RZQsPbJ7I375f3Jh9DCaLHRXjrob9lmYb3iW9FBd:YVfKyI9J2LJ3Jh9pLHNslHbSmBd

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0fd9492b785971917d9bac11f63d38ae.exe
    "C:\Users\Admin\AppData\Local\Temp\0fd9492b785971917d9bac11f63d38ae.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4332
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
      PID:1176

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads