Overview

overview

10

Static

static

8

Spyware/Ag...la.exe

windows7-x64

4

Spyware/Ag...la.exe

windows10-2004-x64

4

MaterialDe...rs.dll

windows7-x64

1

MaterialDe...rs.dll

windows10-2004-x64

1

MaterialDe...pf.dll

windows7-x64

1

MaterialDe...pf.dll

windows10-2004-x64

1

Microsoft....re.dll

windows7-x64

1

Microsoft....re.dll

windows10-2004-x64

1

SharpSteam.dll

windows7-x64

1

SharpSteam.dll

windows10-2004-x64

1

System.Man...on.dll

windows7-x64

1

System.Man...on.dll

windows10-2004-x64

1

UWPHook.exe

windows7-x64

1

UWPHook.exe

windows10-2004-x64

1

VDFParser.dll

windows7-x64

1

VDFParser.dll

windows10-2004-x64

1

Spyware/HawkEye.exe

windows7-x64

10

Spyware/HawkEye.exe

windows10-2004-x64

10

Spyware/Kakwa.doc

windows7-x64

10

Spyware/Kakwa.doc

windows10-2004-x64

10

Spyware/bu...op.exe

windows7-x64

7

Spyware/bu...op.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    145s
  • max time network
    117s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-03-2024 01:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    UWPHook.exe

  • Size

    831KB

  • MD5

    9aa4929291eff01d727b9fb88bba080c

  • SHA1

    820321cd5e8fbf81db43f024e93ee190811b8906

  • SHA256

    d55baebe14b8e68afd44227d3ae7307fa07dbbdd91331b892edde93fd027ca6e

  • SHA512

    b52e18c3c8f4f30479c974e4c19e00cacdb850df6e631aeed553cbfee77703e664136385ff7a6b38c90ddf18e0c29a08c51264ad7696c5d8278b8876d3b7fe1f

  • SSDEEP

    12288:O4IH5S68xqbLLjo9LfPw3ytl8dSkc6ZubYpE0EjcUBS4BJ:O35R8xf143yte6epEdjcUBzBJ

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\UWPHook.exe
    "C:\Users\Admin\AppData\Local\Temp\UWPHook.exe"
    1⤵
      PID:1748

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1748-1-0x0000000074BB0000-0x0000000075360000-memory.dmp

      Filesize

      7.7MB

      Download

    • memory/1748-0-0x0000000000F90000-0x0000000001066000-memory.dmp

      Filesize

      856KB

      Download

    • memory/1748-2-0x0000000005B30000-0x0000000005B40000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1748-3-0x0000000006260000-0x000000000697A000-memory.dmp

      Filesize

      7.1MB

      Download

    • memory/1748-4-0x0000000005F80000-0x0000000005FD0000-memory.dmp

      Filesize

      320KB

      Download

    • memory/1748-5-0x0000000006A40000-0x0000000006AFA000-memory.dmp

      Filesize

      744KB

      Download

    • memory/1748-6-0x0000000006E90000-0x0000000006E98000-memory.dmp

      Filesize

      32KB

      Download

    • memory/1748-7-0x0000000005B30000-0x0000000005B40000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1748-8-0x0000000005B30000-0x0000000005B40000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1748-9-0x00000000093A0000-0x00000000093D8000-memory.dmp

      Filesize

      224KB

      Download

    • memory/1748-10-0x0000000009370000-0x000000000937E000-memory.dmp

      Filesize

      56KB

      Download

    • memory/1748-11-0x0000000074BB0000-0x0000000075360000-memory.dmp

      Filesize

      7.7MB

      Download

    • memory/1748-12-0x0000000005B30000-0x0000000005B40000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1748-13-0x0000000005B30000-0x0000000005B40000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1748-14-0x0000000005B30000-0x0000000005B40000-memory.dmp

      Filesize

      64KB

      Download