Analysis
-
max time kernel
147s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
25-01-2024 16:00
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
74eac103d32e1dc08a0a6565c69eecd6.exe
Resource
win7-20231129-en
windows7-x64
2 signatures
150 seconds
General
-
Target
74eac103d32e1dc08a0a6565c69eecd6.exe
-
Size
985KB
-
MD5
74eac103d32e1dc08a0a6565c69eecd6
-
SHA1
669b4a66fe5fedbb8cf321ce2ad24c3d270d5145
-
SHA256
d3cdab06d635af4a0726c144bcd088ca6ac77d541b63131673bbeb83f07c41c6
-
SHA512
e0b9b4d5e0c7f52ca16e1820d01959b76d2efe7744309c1c0673b17aab42d1c4cb76cf4d310d000dfd618cea82a31fb31c8eeb0b78ffe77d692bbe631f17c10c
-
SSDEEP
12288:FVMkWKjtR762iDgVQWZqdRa2WiCuJO9OwIw9ZOz1lwpOfo0JuSYn/E:FGlK77I0V4ZhH0OwI4IBUS3
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 6 IoCs
Processes:
74eac103d32e1dc08a0a6565c69eecd6.exepid process 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe -
Suspicious use of SendNotifyMessage 6 IoCs
Processes:
74eac103d32e1dc08a0a6565c69eecd6.exepid process 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe 4940 74eac103d32e1dc08a0a6565c69eecd6.exe