Overview

overview

5

Static

static

3

qqspytk/卸载.exe

windows7-x64

5

qqspytk/卸载.exe

windows10-2004-x64

5

qqspytk/�...��.chm

windows7-x64

1

qqspytk/�...��.chm

windows10-2004-x64

1

qqspytk/�...��.url

windows7-x64

1

qqspytk/�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 05:45

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    qqspytk/操作说明.chm

  • Size

    283KB

  • MD5

    a2357b91717fe7d88e4072e78e82d16a

  • SHA1

    3d196cc79edac35c6d6ba68777b0eb947b6d05b6

  • SHA256

    6392e28ab0de0ac9683b91a28b7ca44a0ecb81e3cf8df1d56f2f20e20aad4daf

  • SHA512

    2afd1baf40361993c0c02a4cd92641cd8af25e6ce1df734897e2421c95e0754c7997471f3965a979a30fb7c11ca1bc5f4afc21a5805d347360eb03ef5efe4b7e

  • SSDEEP

    6144:hgNyImBYeFMcp0poJUYfZrmNx3ZvzNTvSo1XMVF0M8pDUiSjUpj:SqvV6+exJ9JhHMoj

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" C:\Users\Admin\AppData\Local\Temp\qqspytk\操作说明.chm
    1⤵
      PID:1528

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads