Overview

overview

1

Static

static

1

c971f129c2...88.exe

windows7-x64

1

c971f129c2...88.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 19:36

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c971f129c2a02a53625af37880aaff88.exe

  • Size

    658KB

  • MD5

    c971f129c2a02a53625af37880aaff88

  • SHA1

    1021f7b8dcb2dd5aea0fda1b5915e1fecae1e331

  • SHA256

    8f7925a4eedfba39030707caef0d61ea4a8d1a75470075443d821b1365646917

  • SHA512

    b5653ab5584c18faef528fc3d7e8a80b8085087315128218e71470b954a62ce4e90a5c9ca361c2a2293a8adfb58964f33be95d2de1c15133d77593a80c775735

  • SSDEEP

    12288:hIqW9h5g0uTA7Wswdsu7JYeAa4nkI3B+J55fL/UBcAifYi9Q2ZSafdLBpsl:hIq0A0QA7WswdsgJYta4nHBGL/UJi990

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c971f129c2a02a53625af37880aaff88.exe
    "C:\Users\Admin\AppData\Local\Temp\c971f129c2a02a53625af37880aaff88.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2008

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\offconfig.temp
          Filesize

          579B

          MD5

          2534792fd804e58ea5d65107d2879edd

          SHA1

          5f1b457ee2897f9de198a4881bfbd30c4a5e27e3

          SHA256

          a74035bb9707741c7ed4142aba275d340129b6a04d0622d038336b8dd99bf258

          SHA512

          6dd67d6acccf1e89c70ef5fc80c30d0aca2225e679858d2f305d798dfc51cce16c612fa724e980070e59ebde35aa0035c2fe0b63f27d6b6f308a3b934b511742

          Download Submit