44b59fc0b14ce3cd13497367a3245f5508d115987a92e1bebd97207da95fc9f2 | Triage

Analysis

max time kernel
147s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
15/03/2024, 01:47

Sharing

Report Analysis Logs

General

Target

pugdogrun/QQ记录邮件解压工具.exe
Size

40KB
MD5

6041daf0563a7375118664bc435d0e72
SHA1

d22e8efa3c0b85fc2673e0dbab5ebf46c9fa786d
SHA256

3ec97fc852f8a4b7825f67154e49d6b58f4ea54d768ef1119f7f4a095864bfa3
SHA512

6b82805a36d5ce8bc8bdc99985475cdb469272976e0a1bf24c12be2d7e29997b3197b62385792e1e9130120cc138093ae111f361704ab4bc5c7446e7059e5d95
SSDEEP

768:jEqtI8klkQVDOM7EIM6Qy0siFCvJ4V7wmdUm1a8k5q6:oqtNklkQZOTMMFCvJgZP1ae6

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
640	QQ记录邮件解压工具.exe
640	QQ记录邮件解压工具.exe

C:\Users\Admin\AppData\Local\Temp\pugdogrun\QQ记录邮件解压工具.exe
"C:\Users\Admin\AppData\Local\Temp\pugdogrun\QQ记录邮件解压工具.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads