5b6ca539eb7b4823e5590445b79d12209f5bd6ed08d9315c1f88de3369b02e78

Analysis

max time kernel
141s
max time network
126s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
11/01/2024, 11:18

Target

535f587f0692fd8942b60e1dd47322a4.exe
Size

10.3MB
MD5

535f587f0692fd8942b60e1dd47322a4
SHA1

33d22fd0bc9c7ab7447cad41e05a21d9ee6b2645
SHA256

5b6ca539eb7b4823e5590445b79d12209f5bd6ed08d9315c1f88de3369b02e78
SHA512

5ac41d329428d3372c8df5c8008551868b4e57b8d03ae8b47ee82216a4a31608a63cc09c4f0592e875d499acf231934a6773a25cb5ef68bab0e09f60efa32959
SSDEEP

196608:h10ZjaOb9iDYhbhknbKTL/zHg6x6Kx/nq9aX0iVnWYa:hOaOkDYhVknbWHguCGo

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2288	535f587f0692fd8942b60e1dd47322a4.exe
2288	535f587f0692fd8942b60e1dd47322a4.exe

C:\Users\Admin\AppData\Local\Temp\535f587f0692fd8942b60e1dd47322a4.exe
"C:\Users\Admin\AppData\Local\Temp\535f587f0692fd8942b60e1dd47322a4.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2288

memory/2288-0-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/2288-1-0x0000000000400000-0x000000000053F000-memory.dmp

Filesize
1.2MB

Download
memory/2288-3-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download