c93a0f4c6b5f24ee31cddb92b0ea3337021b5fb91faae8a381d3bd2c9b6add54

Analysis

max time kernel
140s
max time network
119s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
24/04/2024, 07:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

shellbag_analyzer_cleaner.exe
Size

1.6MB
MD5

463058236a0d84f8f8982d946eed0e07
SHA1

800ab71ed3b3bf4fb67fc9e1628e59d0aab8b124
SHA256

c93a0f4c6b5f24ee31cddb92b0ea3337021b5fb91faae8a381d3bd2c9b6add54
SHA512

18bd9aea8489c5e873a679da92c83d2739de9532f5751bd23aea9eda226b9a95909f8fd525b0ce47859492997002aee32ecf37bb79e07f24b512287b8fd58a53
SSDEEP

24576:HM33oPhoNsZ8IbF1lyDt3Ups4yAg7UrA2ei9QgTum+ApT:sHogIJD2y9oIreG

Score

1^/10

Malware Config

Signatures

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2304	shellbag_analyzer_cleaner.exe
2304	shellbag_analyzer_cleaner.exe

C:\Users\Admin\AppData\Local\Temp\shellbag_analyzer_cleaner.exe
"C:\Users\Admin\AppData\Local\Temp\shellbag_analyzer_cleaner.exe"
1⤵
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
PID:2304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2304-0-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download
memory/2304-1-0x0000000000400000-0x0000000000572000-memory.dmp

Filesize
1.4MB

Download
memory/2304-2-0x0000000000400000-0x0000000000572000-memory.dmp

Filesize
1.4MB

Download
memory/2304-3-0x0000000000400000-0x0000000000572000-memory.dmp

Filesize
1.4MB

Download
memory/2304-6-0x0000000000230000-0x0000000000231000-memory.dmp

Filesize
4KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads