9c408cd2395589f7ee1c9e60a0c705f797863b4129602a21456c3b8a3a8f3366

Analysis

max time kernel
141s
max time network
129s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
16-03-2024 04:35

Target

cd1f9445362cfe198a6c8a11d35a6190.exe
Size

548KB
MD5

cd1f9445362cfe198a6c8a11d35a6190
SHA1

9f6ea0bb44d9f3c62affe22ffdef5b169d99e454
SHA256

9c408cd2395589f7ee1c9e60a0c705f797863b4129602a21456c3b8a3a8f3366
SHA512

5b942ab171f04d919dbb512b7853e78b1a960d53f21babc9eac297f99473ebad73d4971c61fc59b392ce518516b7f8bf080afff13ce1f2730ec1365abe8c1383
SSDEEP

12288:HOdb9gfIq8QSi8X8ujZnTpvn1/yDLQcI0XIt1h0:uV9gf1RUN1n1QpbXIt12

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2320	cd1f9445362cfe198a6c8a11d35a6190.exe

C:\Users\Admin\AppData\Local\Temp\cd1f9445362cfe198a6c8a11d35a6190.exe
"C:\Users\Admin\AppData\Local\Temp\cd1f9445362cfe198a6c8a11d35a6190.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2320

C:\Users\Admin\AppData\Local\Temp\atlantek2.ini

Filesize
12KB

MD5
a77ae1e803b76b430afde1bbf2462d61

SHA1
cf9d4e2319f1dd1c411a67443efd70ca4086c47c

SHA256
9005e3a25233d7212e600efd97f66b4ffa3c216a43749a712f186f1f4ae95f53

SHA512
1b72eea5f663e36d78eb40afc4dd9079d1263ef56ac22d63977df55b26f9c7dac7c3652881f3bdde8a8dfa7f632c3fb0292ab02003fc7995a96f1c2e966c584a

Download Submit
memory/2320-0-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/2320-372-0x0000000000400000-0x0000000000490000-memory.dmp

Filesize
576KB

Download
memory/2320-374-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download