Overview

overview

3

Static

static

3

0caddcedd9...bd.exe

windows7-x64

1

0caddcedd9...bd.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30-12-2023 03:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0caddcedd9fe59ddaf487844ebca0dbd.exe

  • Size

    895KB

  • MD5

    0caddcedd9fe59ddaf487844ebca0dbd

  • SHA1

    3bfb2c82584d70b285332772215e74193723136c

  • SHA256

    55173ce70aec3b45e25617c97657f2e83c5ded0a5675bca80889676085550ca5

  • SHA512

    c8e27989988fb0f4930feefe388598e3ce6ae3fe4a74139dcc4011253da05778c1af875ce05bf92699d2025da1001a3765965efabb93175ebf0e70ca2791faf3

  • SSDEEP

    12288:ZDv6NNwwmAFD594chvWNd3m0IifzRLTsdur2mwr580UcHORBT9xOFFF/FFFFFk01:xSAU9p1g3mde4qz0WCHed3I

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0caddcedd9fe59ddaf487844ebca0dbd.exe
    "C:\Users\Admin\AppData\Local\Temp\0caddcedd9fe59ddaf487844ebca0dbd.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2436

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2436-0-0x0000000002280000-0x0000000002281000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2436-1-0x0000000000400000-0x00000000004E7000-memory.dmp

    Filesize

    924KB

    Download

  • memory/2436-3-0x0000000002280000-0x0000000002281000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2436-9-0x0000000000400000-0x00000000004E7000-memory.dmp

    Filesize

    924KB

    Download