Analysis
-
max time kernel
97s -
max time network
197s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
20/02/2024, 14:37
General
-
Target
VirusSign.2024.02.08/03eec9b444ff21a20e84fa8592478c22.exe
-
Size
405KB
-
MD5
03eec9b444ff21a20e84fa8592478c22
-
SHA1
9b1b7ff45b73f8cb9ad8f3037c3deeb6ed2e81a5
-
SHA256
705985fea4cbd638e8633fe77894a557420467020b2f71e35408b120df584a22
-
SHA512
826233a9f010e523f14273f78f33c89f8f95e610c406ed4ca017eba2b64668b18eb98f4fbe9ecb2a423607effd5d2e4ed486acb21e9e7e5839b0480f6696f60a
-
SSDEEP
6144:sy+T9tAllM7QuLYfGTLyN6Xu0g3nSnvCGbYCFafAoIhHO:sy+T9ellutLYfG3yNYlg3SvRbr2AoIh
Score
7/10
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
-
Drops file in Program Files directory 1 IoCs
-
Suspicious use of SetWindowsHookEx 8 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\VirusSign.2024.02.08\03eec9b444ff21a20e84fa8592478c22.exe"C:\Users\Admin\AppData\Local\Temp\VirusSign.2024.02.08\03eec9b444ff21a20e84fa8592478c22.exe"1⤵
- Drops file in Program Files directory
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files\French\German.exe"C:\Program Files\French\German.exe" "33201"2⤵
- Executes dropped EXE
- Suspicious use of SetWindowsHookEx
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
406KB
MD5df47d86e0afcac3e0ab7104a6263ae0d
SHA19df5b2b3b8ffd7f104ba0d4c6e7d3f44933f6fe6
SHA256125264899407d3347648a2546d218e0c52d6eb0c235969771e41b2685ef2e55b
SHA5124f6c7d5a74a5c068b32330547ab6d992e746d80f4ed133ea2bb0e1fa851781a2e2f27baed38894bc16ca519f4e70bd9bc702d3b2a79def37f90c322f5541a100