Analysis
-
max time kernel
143s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
13-02-2024 04:11
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
98716aba72cb3f55a268684a28f62f34.exe
Resource
win7-20231215-en
windows7-x64
6 signatures
150 seconds
Behavioral task
behavioral2
Sample
98716aba72cb3f55a268684a28f62f34.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
98716aba72cb3f55a268684a28f62f34.exe
-
Size
26KB
-
MD5
98716aba72cb3f55a268684a28f62f34
-
SHA1
b17998d0dd590236c4b62aed557c3c7aa5f1c12b
-
SHA256
09a432466c5d29b47b955494aaed179492890864afa02a333f292c03c719640d
-
SHA512
a0c583fcf24d71c0b6640ee08ddc304d00c8d10be94ed472ac61ea20e84935d75950a65263741e1601e141d1a578cbb1c19153adeac6fd374023345bf715d489
-
SSDEEP
384:qRoJk4RMrnKsDQ+hRjBTFXkAVnn+wI1MIv1ujI0sAgrtrxOYrPkPfCxsgOjCr:qRMirnKKjhNZ1ZVnDI1Tv4jNsgtgOjCr
Score
6/10
Malware Config
Signatures
-
Adds Run key to start application 2 TTPs 1 IoCs
description ioc Process Set value (str) \REGISTRY\USER\S-1-5-21-3336304223-2978740688-3645194410-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Kernel = "C:\\Windows\\services.exe" 98716aba72cb3f55a268684a28f62f34.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 3244 98716aba72cb3f55a268684a28f62f34.exe 3244 98716aba72cb3f55a268684a28f62f34.exe 3244 98716aba72cb3f55a268684a28f62f34.exe 3244 98716aba72cb3f55a268684a28f62f34.exe