4923c3de838a84b05165cd97d42246e54011b80ff75f8840b1a7570b211454a5 | Triage

Analysis

max time kernel
121s
max time network
123s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
23/05/2024, 11:53

Sharing

Report Analysis Logs

General

Target

Token_保持2.4.exe
Size

6.6MB
MD5

a07c424883db0baa73caea4614cff376
SHA1

e68d6c95e96e50cd5cd9aa0d746e38f9c7da12e5
SHA256

4923c3de838a84b05165cd97d42246e54011b80ff75f8840b1a7570b211454a5
SHA512

654d84fa943bb65c7a90943d9ed0eba0023a3c866396560997992494636ec116696e4bd4400b5e5f837531775075368b0165499eebe4fb9f274894d02b3a3d48
SSDEEP

98304:fROquFsZZ/VMotsJtIc9QRs2kddwhzLcw0pXa8gtp0iBgka7G8sGi:fRKC/5ts7IVVawNLcwgSaBs5

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1920	Token_保持2.4.exe
1920	Token_保持2.4.exe

C:\Users\Admin\AppData\Local\Temp\Token_保持2.4.exe
"C:\Users\Admin\AppData\Local\Temp\Token_保持2.4.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1920

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads