Analysis
-
max time kernel
149s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
-
submitted
21/04/2024, 18:10
General
-
Target
KrampUI.exe
-
Size
17.3MB
-
MD5
837122705edd80925d0b175d14100e6f
-
SHA1
1d4deb47ed8e4a04f0d90e8348eb43c21280fb60
-
SHA256
58ead4f71b8a1bed5820e82bd8f50e55da924e7ca38c2d2aded24e0c6b91faa2
-
SHA512
42bdee531d2ac59836fb6162ca83c561e716e2fc6082d6a86e1bae973c452e710b8a56e013ae25c372a828849230f1dc3347c7bb1fe80aa752d9352b28806ade
-
SSDEEP
98304:cBxRT5JqQA8LOfnmJAiF04Lv23vj7wJsTIHy1E7rDfBw/m931PVTTolT6dUZPfbr:+tnkWHonLefAs1xL11RBbdq
Score
1/10
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 2 IoCs
-
Suspicious use of SendNotifyMessage 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\KrampUI.exe"C:\Users\Admin\AppData\Local\Temp\KrampUI.exe"1⤵
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵