613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c

Analysis

max time kernel
93s
max time network
94s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
27/05/2024, 13:58

Target

613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c.exe
Size

2.2MB
MD5

d47641b66836981c28ec4de34c68df94
SHA1

dc3896fce7994eb1ec2d0dc784f3ab9db1376297
SHA256

613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c
SHA512

ded3cf5c8b19511ca99270bce1428b8edf91e71dc91e50d4f4cbcc73f89aaa9195b09958cefd69163285a1a441b472fbcba28a1b723a932a8cc6416972cad42f
SSDEEP

49152:9GTNwlNDHa9Mx/cd6Y/5wMuGVo/bpdPODPJScFPW0fveOWh0YHEnikW4RKHRA:9GTNw3DHx/cd6GjCbDPUZs0fWOaA59

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
4408	613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c.exe
4408	613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c.exe

C:\Users\Admin\AppData\Local\Temp\613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c.exe
"C:\Users\Admin\AppData\Local\Temp\613ff03c5e046ef21d999a7dd1154d1289cbfc292071dd41c7378fa7e3d2b12c.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4408

memory/4408-0-0x0000000000400000-0x0000000000672000-memory.dmp

Filesize
2.4MB

Download
memory/4408-2-0x0000000002360000-0x0000000002363000-memory.dmp

Filesize
12KB

Download
memory/4408-1-0x00000000025A0000-0x0000000002D8D000-memory.dmp

Filesize
7.9MB

Download
memory/4408-3-0x00000000025A0000-0x0000000002D8D000-memory.dmp

Filesize
7.9MB

Download
memory/4408-4-0x00000000025A0000-0x0000000002D8D000-memory.dmp

Filesize
7.9MB

Download
memory/4408-5-0x0000000000400000-0x0000000000672000-memory.dmp

Filesize
2.4MB

Download