ed5fe5eb0d0146db50d8848052a4a9177c50ea00c51471f4489f1327370133d4 | Triage

Analysis

max time kernel
142s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
04/02/2024, 09:33

Sharing

Report Analysis Logs

General

Target

Total Video Converter/tvc.exe
Size

1.2MB
MD5

63b551998888ff987de71c5f0c9a47be
SHA1

7b7dcbb1ea49a07c927009b060107551cc4c762a
SHA256

9e178d79f4d71ea89e287276ccea9208785c9d18061f015cd73015346216f681
SHA512

245b3aab355a2fed0b64bd5eca63fa38dad51ac2d2c4fd4bbe8f09616708935d1fe27eaaf50f120c448bbb189f0b491d91e0fdcc25a124cb917d4e1c1ed4d8a9
SSDEEP

24576:siSW5ERx38F8jZx2LN8xAfp6YDb/HvtZlLk+owDW5/ObAUUUC:DA38YK8GR6YD7VKUUU

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4196	tvc.exe

C:\Users\Admin\AppData\Local\Temp\Total Video Converter\tvc.exe
"C:\Users\Admin\AppData\Local\Temp\Total Video Converter\tvc.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4196-0-0x0000000000D00000-0x0000000001450000-memory.dmp

Filesize
7.3MB

Download
memory/4196-1-0x0000000001450000-0x0000000001491000-memory.dmp

Filesize
260KB

Download
memory/4196-3-0x00000000014A0000-0x000000000172E000-memory.dmp

Filesize
2.6MB

Download
memory/4196-2-0x0000000001730000-0x0000000001743000-memory.dmp

Filesize
76KB

Download