dbb53b0f2c9c2a6af84fb791a00540f9af056474ac067579440c80912b8f2e50 | Triage

Analysis

max time kernel
154s
max time network
161s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
09/03/2024, 20:14

Sharing

Report Analysis Logs

General

Target

HaoZip.chm
Size

117KB
MD5

c779ad7aca93f8b388078bb8706b6b8f
SHA1

c78f5ffd577cd02960da63c65538adde8f7a9b9a
SHA256

fa59db8421776b13aac2086ebcf3e57c9bc880ab775637ed1a76bbf600ce4adb
SHA512

c5876a07c315159243808ea60d3b89efdfc42cb1f511e2d30f066eed527bcc693b94e1462e7f7fb0f6da2e348c89a54bce1ee648152ebfbce0e976ba90d6954e
SSDEEP

3072:FKqd/2lzjE0IzKRx2QPbMqvko54BfcDwSVQyoyeG+GVA/bv:F72dA6xbPtUt+eG+G6/bv

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1888	hh.exe
1888	hh.exe

C:\Windows\hh.exe
"C:\Windows\hh.exe" C:\Users\Admin\AppData\Local\Temp\HaoZip.chm
1⤵
- Suspicious use of SetWindowsHookEx
PID:1888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads