576865113de8d0e0a2200f33c41345c2f6f25778d38bd6930430113df078f3e8

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
18-03-2024 16:44

Target

SETUP1.exe
Size

268KB
MD5

276ba8ddc599290ff4f3695cd13e0cee
SHA1

c37019030ae92b4d9fc7c6c6e200aa1108d4511b
SHA256

93c14938e63bffd9933439a34357a590a581c9bc0c086b3efd00dae334810dee
SHA512

4845f8569f0f3f0927bb0e646395d11903872bb0204093ef2616d51b3ba6af96abac96e60767ce25339f0c2517bc92898b90ab2f293a3dc5d082a6234c595434
SSDEEP

6144:o9WHxsftUnVBVz2gcI+Ag+/p53gYLGPcXcwL:AWR8qTI0jBt

Score

3^/10

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2276	SETUP1.exe

C:\Users\Admin\AppData\Local\Temp\SETUP1.exe
"C:\Users\Admin\AppData\Local\Temp\SETUP1.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2276

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact