38cad93e056c7f5c5bdb00bb7dc8a19f69026a7fe2a584dae8b7e56ac27aabdb

Analysis

max time kernel
145s
max time network
125s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25/12/2023, 18:27

Target

34737aa5c6263f67ab43c6e938136a8e.exe
Size

449KB
MD5

34737aa5c6263f67ab43c6e938136a8e
SHA1

04f679765c0c7172a3d703c15366954938e34403
SHA256

38cad93e056c7f5c5bdb00bb7dc8a19f69026a7fe2a584dae8b7e56ac27aabdb
SHA512

c833ad7f5fad92ca4db902265f973d7c00cf98ec89f3d17c42e0dc51756cec261f2c1a8ce6ad940c7bb46abb893281a65b7926b4bcde0975261d973a1f044ca2
SSDEEP

12288:0r3ZBIRqVfLSi//M/u2a+1Q+YJmlZib4PUVjC5DW7j4:IZB2qVfLSism27Q+YsZW4cyD2M

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
3292	34737aa5c6263f67ab43c6e938136a8e.exe
3292	34737aa5c6263f67ab43c6e938136a8e.exe

C:\Users\Admin\AppData\Local\Temp\34737aa5c6263f67ab43c6e938136a8e.exe
"C:\Users\Admin\AppData\Local\Temp\34737aa5c6263f67ab43c6e938136a8e.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3292

memory/3292-0-0x0000000000400000-0x0000000000420000-memory.dmp

Filesize
128KB

Download