eda533334f0690bfd96b796212c8331fd1c7fe16e24a42de9a2bdcbe30bad9a6 | Triage

Analysis

max time kernel
150s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
09-05-2024 18:24

Sharing

Report Analysis Logs

General

Target

vac.chm
Size

205KB
MD5

9865dad49ca2a8e25a61b8e588d8e723
SHA1

abfe336a9104b6f87ca0141cf8703508d89b58ac
SHA256

9e14aab573e70f330c3ce37a3f5d6727caecdd1c9caa3855fdf7a05b75713ffb
SHA512

641fc3c69267b4f00f856c06e5f82d68fe4c9ee34b4125edbf268b31f1ff4c4732450a49032ce1b927e8f710ace1fed4961811ba809fc89c638406178ace4a60
SSDEEP

3072:s/2Ln7UgexP4yPtr4On05CDRwuKQyRL3pGTau3TTx5s1slJyBBrLnkbgYmmS:s/i5e1nFtn0lMU30THx5sQgYbJmf

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
4724	hh.exe
4724	hh.exe

C:\Windows\hh.exe
"C:\Windows\hh.exe" C:\Users\Admin\AppData\Local\Temp\vac.chm
1⤵
- Suspicious use of SetWindowsHookEx
PID:4724

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads