Overview

overview

7

Static

static

3

6dfb490d34...18.exe

windows7-x64

7

6dfb490d34...18.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

Help.chm

windows7-x64

1

Help.chm

windows10-2004-x64

1

Right Clic...er.exe

windows7-x64

1

Right Clic...er.exe

windows10-2004-x64

1

Tools/File...or.exe

windows7-x64

1

Tools/File...or.exe

windows10-2004-x64

1

Tools/File...lp.chm

windows7-x64

1

Tools/File...lp.chm

windows10-2004-x64

1

Tools/New ...lp.chm

windows7-x64

1

Tools/New ...lp.chm

windows10-2004-x64

1

Tools/New ...or.exe

windows7-x64

1

Tools/New ...or.exe

windows10-2004-x64

1

Tools/Righ...lp.chm

windows7-x64

1

Tools/Righ...lp.chm

windows10-2004-x64

1

Tools/Righ...IE.exe

windows7-x64

1

Tools/Righ...IE.exe

windows10-2004-x64

1

Tools/Righ...lp.chm

windows7-x64

1

Tools/Righ...lp.chm

windows10-2004-x64

1

Tools/Righ...er.exe

windows7-x64

1

Tools/Righ...er.exe

windows10-2004-x64

1

Tools/Righ...32.dll

windows7-x64

1

Tools/Righ...32.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    24/05/2024, 09:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Tools/Right Click Tweaker/Help.chm

  • Size

    117KB

  • MD5

    3842738fbe94ebc79790c9a22f1fc9de

  • SHA1

    abb62c2904ac5a63ec16cd0471908e57106bd8a1

  • SHA256

    37b39c08d0083e61f4eb9bc58dbb252c146c664e41d78e2dc1b2f523ce0fc54d

  • SHA512

    31b0f49b6fd7e06fdb59f3eea0d6c468dbcae27ed0f35df8c24bf904302ad4f9abbf7e1221c957e2f3bb05491f76b590601037e2fc7dd0c07c0a96291a64051f

  • SSDEEP

    3072:I7ENboDV7DpLSsFP2H48OQFt737ObufcBomQqq/Iuu:I7ENbsVHHsRvL7OeZRu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 1 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\Tools\Right Click Tweaker\Help.chm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:1872

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1872-36-0x000007FFFFF80000-0x000007FFFFF90000-memory.dmp

    Filesize

    64KB

    Download