Overview

overview

7

Static

static

7

Super Hexa...32.dll

windows10-2004-x64

3

Super Hexa...ge.dll

windows10-2004-x64

3

Super Hexa...-6.dll

windows10-2004-x64

3

Super Hexa...er.dll

windows10-2004-x64

1

Super Hexa...on.lnk

windows10-2004-x64

7

Super Hexa...ib.dll

windows10-2004-x64

3

Super Hexa...ex.dll

windows10-2004-x64

7

Super Hexa...xL.dll

windows10-2004-x64

7

Super Hexa...32.dll

windows10-2004-x64

1

Super Hexa...me.dll

windows10-2004-x64

1

Super Hexa...00.dll

windows10-2004-x64

3

Super Hexa...00.dll

windows10-2004-x64

3

Super Hexa...pi.dll

windows10-2004-x64

1

Super Hexa...on.exe

windows10-2004-x64

7

Super Hexa...00.exe

windows10-2004-x64

7

Super Hexa...up.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    148s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11-05-2024 17:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Super Hexagon/Super Hexagon/superhexagon.exe

  • Size

    2.6MB

  • MD5

    6a5934a409eafa882d5159a8d6039702

  • SHA1

    4ed8cd42ac0cee241b44534a7e809508e1ee45d1

  • SHA256

    a68bffbdbc6c1c6c625d6e9f565c6dfdc1d517a98f781bdbd5d7c96636538625

  • SHA512

    deddda0981502db156901b13a0a2b24ca5b1cc4baa423e11ce2f9741e065943c11e6ec5a4c61f71d62db4894bcecb704d1c44e25b37fbc5b9cc166c90eec9f60

  • SSDEEP

    49152:J9ZGVSwBIB9PJFWBEow/4c3M1nkNMLqE+7HG9TF:JrB9PJFWrw/4R1kNMLqMT

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Super Hexagon\Super Hexagon\superhexagon.exe
    "C:\Users\Admin\AppData\Local\Temp\Super Hexagon\Super Hexagon\superhexagon.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2668
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 2668 -s 648
      2⤵
      • Program crash
      PID:3000
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 368 -p 2668 -ip 2668
    1⤵
      PID:1268

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2668-0-0x0000000000C40000-0x0000000000D87000-memory.dmp

      Filesize

      1.3MB

      Download

    • memory/2668-3-0x0000000000830000-0x0000000000841000-memory.dmp

      Filesize

      68KB

      Download

    • memory/2668-4-0x0000000000860000-0x0000000000887000-memory.dmp

      Filesize

      156KB

      Download

    • memory/2668-5-0x0000000000C40000-0x0000000000D87000-memory.dmp

      Filesize

      1.3MB

      Download

    • memory/2668-2-0x0000000000D90000-0x0000000000FDD000-memory.dmp

      Filesize

      2.3MB

      Download

    • memory/2668-11-0x0000000000C40000-0x0000000000D87000-memory.dmp

      Filesize

      1.3MB

      Download

    • memory/2668-10-0x000000006D380000-0x000000006D3D1000-memory.dmp

      Filesize

      324KB

      Download