576865113de8d0e0a2200f33c41345c2f6f25778d38bd6930430113df078f3e8

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
18/03/2024, 16:44

Target

SETUP1.exe
Size

268KB
MD5

276ba8ddc599290ff4f3695cd13e0cee
SHA1

c37019030ae92b4d9fc7c6c6e200aa1108d4511b
SHA256

93c14938e63bffd9933439a34357a590a581c9bc0c086b3efd00dae334810dee
SHA512

4845f8569f0f3f0927bb0e646395d11903872bb0204093ef2616d51b3ba6af96abac96e60767ce25339f0c2517bc92898b90ab2f293a3dc5d082a6234c595434
SSDEEP

6144:o9WHxsftUnVBVz2gcI+Ag+/p53gYLGPcXcwL:AWR8qTI0jBt

Score

3^/10

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4456	SETUP1.exe

C:\Users\Admin\AppData\Local\Temp\SETUP1.exe
"C:\Users\Admin\AppData\Local\Temp\SETUP1.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4456

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact