90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7

Analysis

max time kernel
141s
max time network
118s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
23-05-2024 00:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe
Size

2.5MB
MD5

12c6e1dfd40f085772ca279be2605b2e
SHA1

72b0c303d041a807591f232f1b0836259b32c18b
SHA256

90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7
SHA512

68fa50834d245512cb44541ec46b92b46325e8508dd944f55eb4a84ac418ccb6db72da760b1f057c1ca3462a226887397aa8fcf3271b2fb2d77e248b2e218bf1
SSDEEP

49152:ypELeLb3g+2HHz+yQgc4OQqNFjLHVaz76ev8gbPC:/LoMZahBNFLHIXvHbPC

Score

5^/10

Malware Config

Signatures

Suspicious use of NtSetInformationThreadHideFromDebugger 3 IoCs

Processes:

90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe

pid	process
2932	90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe
2932	90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe
2932	90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe

Suspicious use of SetWindowsHookEx 2 IoCs

Processes:

90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe

pid	process
2932	90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe
2932	90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe

C:\Users\Admin\AppData\Local\Temp\90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe
"C:\Users\Admin\AppData\Local\Temp\90055e0f372a69ebd11e7bbe095f45c9e80773aed42aa8da22effc750c7ec7d7.exe"
1⤵
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetWindowsHookEx
PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2932-0-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-1-0x0000000000401000-0x000000000062B000-memory.dmp

Filesize
2.2MB

Download
memory/2932-2-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-3-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-4-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-5-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-6-0x0000000000401000-0x000000000062B000-memory.dmp

Filesize
2.2MB

Download
memory/2932-7-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-8-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-9-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-10-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-11-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-12-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-13-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-14-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-15-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-16-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-17-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download
memory/2932-18-0x0000000000400000-0x00000000008A4000-memory.dmp

Filesize
4.6MB

Download