d7da206b085741953867b84b5cedd11eba843f35e1093384b8306b91c5a091a3

Analysis

max time kernel
92s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
16-05-2024 15:55

Target

TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630/UFD_MP/RegCleaner_Ver1.002.exe
Size

144KB
MD5

133e44f6692e92834c1cae3eeda87842
SHA1

3c797f965e1449a570954dc4f6b133ee5a36cbf6
SHA256

47ca0d54f16eb9b8c2b4a9b978ffcc1e6b1183e0e2a54e7d74fddc9a18381ac9
SHA512

55df3bdb8b78c22a0483afff85fe4c57fbcd2e7209096f086d7085da0bf8bd8bfceb6ea929475189a0b08ed44fe51fb16bba59951fee0d3f288421c636066c5a
SSDEEP

3072:mpIEdf7vNWCB9nnDA+Nh4oUoMEWx7Erv8F+UxvliAPPLYmB6o8NnThaak6/ZDb0E:KISzNWce8T+bUAw

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1648	RegCleaner_Ver1.002.exe
1648	RegCleaner_Ver1.002.exe

C:\Users\Admin\AppData\Local\Temp\TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630\UFD_MP\RegCleaner_Ver1.002.exe
"C:\Users\Admin\AppData\Local\Temp\TRANSCEND-SM32X-PV1.0.68-BY-TAGARAZ-L0630\UFD_MP\RegCleaner_Ver1.002.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1648