Overview

overview

7

Static

static

7

8UFtp智�...is.sys

windows7-x64

1

8UFtp智�...is.sys

windows10-2004-x64

1

8UFtp智�...ar.exe

windows7-x64

1

8UFtp智�...ar.exe

windows10-2004-x64

1

8UFtp智�...gr.exe

windows7-x64

1

8UFtp智�...gr.exe

windows10-2004-x64

1

8UFtp智�...vr.exe

windows7-x64

1

8UFtp智�...vr.exe

windows10-2004-x64

1

8UFtp智�...LR.dll

windows7-x64

1

8UFtp智�...LR.dll

windows10-2004-x64

1

8UFtp智�...��.url

windows7-x64

1

8UFtp智�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 14:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    8UFtp智能扩展服务端/TFtpMangr.exe

  • Size

    80KB

  • MD5

    5d2785b5a6c4b3a8b0ef9b1ec656846f

  • SHA1

    d2e86e74e9df1ed5c2970d79fac20dfb8624f980

  • SHA256

    cfa634203f38bd19adbee2d28ede982f0fe0fdb238b848e6c97f286d9197f98d

  • SHA512

    121e8216b9e478833cfaa3d975a6078ef8e922129d6d7aca1a430713937b90bfc5b5275b5a9cb8c929050c35040a0041e7985c4a5605d30030d1db17c1577e98

  • SSDEEP

    1536:FX95vnUAJ4g0R+UWqSpJVRA2sXNHlxhGOI1BGDU:FN5fUX8PqStRA2+l2bGw

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8UFtp智能扩展服务端\TFtpMangr.exe
    "C:\Users\Admin\AppData\Local\Temp\8UFtp智能扩展服务端\TFtpMangr.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2756

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads