3e279da1c1e422212692d3662e2cd5a0f89e2a5e44b6139c6de1c1de63dff671

Analysis

max time kernel
163s
max time network
171s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
10/01/2024, 10:32

Target

5052ba0586b4e59ae0c5beb849214300.exe
Size

7.6MB
MD5

5052ba0586b4e59ae0c5beb849214300
SHA1

4e7e738ecc86d553a30bef708d20799faab7fb57
SHA256

3e279da1c1e422212692d3662e2cd5a0f89e2a5e44b6139c6de1c1de63dff671
SHA512

d5995b8d791a5e38214012af317ec3ccbe1ae188c9f584abf75bcd91b0a275f8c0c0bf3d6ce4a7565533c647c83c00eca24aaa34545a2d710dd723c7a6e541fd
SSDEEP

196608:h24eqtAgWddNUox1IuTjm66tlPxsRUyAtgrUwtj:oAxWtfIuTjm6YKUyYUD

Score

1^/10

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
3172	5052ba0586b4e59ae0c5beb849214300.exe
3172	5052ba0586b4e59ae0c5beb849214300.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
3172	5052ba0586b4e59ae0c5beb849214300.exe

memory/3172-0-0x0000000000400000-0x0000000001F1D000-memory.dmp

Filesize
27.1MB

Download
memory/3172-1-0x0000000000400000-0x0000000001F1D000-memory.dmp

Filesize
27.1MB

Download
memory/3172-3-0x0000000000400000-0x0000000001F1D000-memory.dmp

Filesize
27.1MB

Download
memory/3172-4-0x0000000077A70000-0x0000000077A71000-memory.dmp

Filesize
4KB

Download
memory/3172-5-0x00000000022A0000-0x00000000022A1000-memory.dmp

Filesize
4KB

Download
memory/3172-6-0x00000000026E0000-0x00000000026E1000-memory.dmp

Filesize
4KB

Download
memory/3172-7-0x0000000006740000-0x0000000006747000-memory.dmp

Filesize
28KB

Download
memory/3172-8-0x00000000022A0000-0x00000000022A1000-memory.dmp

Filesize
4KB

Download
memory/3172-10-0x00000000026E0000-0x00000000026E1000-memory.dmp

Filesize
4KB

Download