ea1b8ab9bb9b1f2015c6f3de62b8a9b09635d462a6803b6325e01360d2bc06f7 | Triage

Analysis

max time kernel
52s
max time network
38s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
20-05-2024 04:40

Sharing

Report Analysis Logs

General

Target

dabestell_v14.exe
Size

268KB
MD5

5502603341a2ee943ab2808306985d58
SHA1

0a20f6de0e0c61afcfaba712e2cc1b415556f4f1
SHA256

ea1b8ab9bb9b1f2015c6f3de62b8a9b09635d462a6803b6325e01360d2bc06f7
SHA512

be686edbf33a923ad3ba5f12be9c76befbd67a449ae90aad080969a88aed4ad887c3b08bc5b1d8b2124b0f4fff2db6da6bddd850797a6d081b5c4f76644b2081
SSDEEP

6144:mTfFDbRnOTrfBFaJpfjdglYM4KMf8V8ju2CNRDuk9c:E5Oz0iYF7fkbda

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

dabestell_v14.exe

pid process

392 dabestell_v14.exe
392 dabestell_v14.exe

C:\Users\Admin\AppData\Local\Temp\dabestell_v14.exe
"C:\Users\Admin\AppData\Local\Temp\dabestell_v14.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/392-0-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download