88418205ad303c208f27e1efeef81032ce7373d0d005cdbe4d890d7351b5674c

Analysis

max time kernel
15s
max time network
19s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
01-05-2024 00:51

Target

hacked client (rats) LMAO/zoomin.exe
Size

383KB
MD5

bc3cd5942f707ce50cc5e1e141d2313e
SHA1

6ecc49dd6ea7b641a641f5f9a260483a21fd6350
SHA256

9bcdb52a2a3f1ebad2b546042f660f39f1eb4cc4487dfbf50282e9a3b8492eef
SHA512

c2c46e83b85f8b131cc27829891ed77b1dd0294e4c6d1cd14b1853c8aa958e140a64e357ae1a43a737272afbfa9dae576ebc678429c2d8e1a16557b579c6e8fc
SSDEEP

6144:knRL7qME7uPOB+qUxO+Nsh98jO/6X+ZVrG5ddGatYmnerGVFJEEt:qnJavMqUxOfVrGVemnhPE

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

Processes:

zoomin.exe

pid process

4296 zoomin.exe

pid	process
4296	zoomin.exe

C:\Users\Admin\AppData\Local\Temp\hacked client (rats) LMAO\zoomin.exe
"C:\Users\Admin\AppData\Local\Temp\hacked client (rats) LMAO\zoomin.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4296