7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a

Analysis

max time kernel
141s
max time network
125s
platform
windows7_x64
resource
win7-20240319-en
resource tags

arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
submitted
18/04/2024, 23:22

Target

7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a.exe
Size

1.6MB
MD5

509b854d92b84d25f3087cae47bdd85a
SHA1

30e0f6928043f8cb393e57bf26c9c5c8f74de9e2
SHA256

7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a
SHA512

57af6a163e5d909e29315225082490a6f6c0afb9f8e5e900d67902486b610e01507fcba8e971315c32156e5a476968894db10062243efd5366a8cdbb69c12eef
SSDEEP

24576:6XaRicFDnikUa0BVdybnnavdZfVESwGMx0/J2022PuBADGlhJgNP:G6ikU0bnaTfVESGIJ202IGfSP

Score

1^/10

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2884	7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a.exe

Suspicious behavior: RenamesItself 1 IoCs

pid	Process
2884	7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2884	7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a.exe
2884	7352b181304f49a57a6314fb0283adb4c72c2d9dc1c136e7b40927f9ba766e1a.exe

memory/2884-0-0x0000000000400000-0x00000000005B3000-memory.dmp

Filesize
1.7MB

Download
memory/2884-1-0x00000000001D0000-0x00000000001D2000-memory.dmp

Filesize
8KB

Download
memory/2884-4-0x0000000000400000-0x00000000005B3000-memory.dmp

Filesize
1.7MB

Download
memory/2884-5-0x00000000003B0000-0x00000000003B2000-memory.dmp

Filesize
8KB

Download
memory/2884-28-0x0000000000400000-0x00000000005B3000-memory.dmp

Filesize
1.7MB

Download