Overview

overview

3

Static

static

3

235f4cf37a...ca.exe

windows7-x64

1

235f4cf37a...ca.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-12-2023 13:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    235f4cf37ac27dc5f65ea7d3ec21deca.exe

  • Size

    3.9MB

  • MD5

    235f4cf37ac27dc5f65ea7d3ec21deca

  • SHA1

    fe7d5b8c304d90f34ae2468992b604a56a8ab35e

  • SHA256

    e98e840eb26828f3b19c3ac2c62f79b9b16105246120734b64284b4fb51de2aa

  • SHA512

    24ea10c6fc5ccab6a0103090e2744b7011d74205bebfec5887423a2a8b1f2a62f899e5b07ad4f6652963bfdb04f3cdccbfbf28378a4a5be327a7bc17bb9c26c3

  • SSDEEP

    98304:Aom+eqhlUmAIh/YpLzjZBJ99lccCVyeMoBBGL93p32tAgrLwSw:AdxqhlUmKpLzVBJ99lccCVyeMoBBGL9B

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\235f4cf37ac27dc5f65ea7d3ec21deca.exe
    "C:\Users\Admin\AppData\Local\Temp\235f4cf37ac27dc5f65ea7d3ec21deca.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:5012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/5012-0-0x0000000000400000-0x00000000007E8000-memory.dmp

    Filesize

    3.9MB

    Download

  • memory/5012-1-0x00000000009F0000-0x00000000009F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/5012-2-0x0000000000400000-0x00000000007E8000-memory.dmp

    Filesize

    3.9MB

    Download