a3a267aa6f5b0ade2e4829ba18a1baa5bf9a622b49767c1f849090d9263ff68d

Resubmissions

08/02/2024, 09:22

08/02/2024, 02:25

07/02/2024, 17:55

max time kernel
119s
max time network
121s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
07/02/2024, 17:55

Target

npp.8.6.portable.x64/notepad.exe
Size

6.8MB
MD5

ae07a5be89978600f3094c66ac719eb2
SHA1

a281e662b6d1cca0d54cab01a0064b62e7f1f103
SHA256

746bbdd8c754b0ac18a226d2a1cc68792c948033932f5723981a2b5f5684d310
SHA512

d90f42fb42cf2f5f3ca8d25603666a5b73f11fcc3404597b1c023768cf21083abe0d2b19f3ae2499fba469474e818200ca9937b48ee5406f15bd6f9ea3996151
SSDEEP

49152:MuX8nT7KkzbaJ/I1ER5S/qlC1VQHqpyhdRoMSoAMMho/WVEK7yToMoK2w74CS5hg:5/ICR5wPy+elgIXoGJUR6eP4mTr/moG

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2500	notepad.exe

C:\Users\Admin\AppData\Local\Temp\npp.8.6.portable.x64\notepad.exe
"C:\Users\Admin\AppData\Local\Temp\npp.8.6.portable.x64\notepad.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2500

memory/2500-0-0x0000000004610000-0x000000000A56F000-memory.dmp

Filesize
95.4MB

Download