659b504f2efe5c9fc5c0bf7d228c205e9863179ddba5831e37d0faa4b4b1b843

Analysis

max time kernel
118s
max time network
123s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
25-12-2023 18:58

Target

《范海辛的奇妙冒险》人物属性修改器+14/The Incredible Adventures of Van Helsing Plus 14 Trainer.exe
Size

977KB
MD5

ceb54feff87696fb7f7f5f51277bf2dd
SHA1

a352a98638010c35122eb9ca9cf4087b2e9def07
SHA256

eada45404dfe9808b98cc3080bebeffff542b8d6db17715ed9805638ec77e4b4
SHA512

6c87bda10ab6049aa974a72ef3de8d7f084a632c7f349bdfeecf95596a2e0e1d95c2759fce8d9c67fa7099aec556643aa8b7bfd4d108e3c337be959086de4e6e
SSDEEP

12288:XoJEzaESHlA3ITK/DkTergcY538gPzISG3uun+Hq79tH1S+aK:XDyFA4TcDkTergb8Az5G37bHH1S6

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1172	The Incredible Adventures of Van Helsing Plus 14 Trainer.exe
1172	The Incredible Adventures of Van Helsing Plus 14 Trainer.exe

C:\Users\Admin\AppData\Local\Temp\《范海辛的奇妙冒险》人物属性修改器+14\The Incredible Adventures of Van Helsing Plus 14 Trainer.exe
"C:\Users\Admin\AppData\Local\Temp\《范海辛的奇妙冒险》人物属性修改器+14\The Incredible Adventures of Van Helsing Plus 14 Trainer.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1172