Overview

overview

1

Static

static

1

Photoshop.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    254s
  • max time network
    266s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240508-en
  • resource tags

    arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    16/06/2024, 14:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Photoshop.exe

  • Size

    172.4MB

  • MD5

    e32300464cee1d167f72e8e878bf7eec

  • SHA1

    2f7709e75af52613772c02b636a09cf9f37dfee0

  • SHA256

    0a82ab2b666bdfbb3b194e55387ea85ad8cefdcd1506ba260ed03dcb23a46737

  • SHA512

    075810112248dbb4e27b590c77953fe65f6e4485e2cbc199cc287d518f143795d1ce4b029b6e1c11230588a7ca8dd1c8b491a699dba8d59a869d44be5fd0233c

  • SSDEEP

    786432:np9VzzhY7WJOpK2ECvtzciyXDdMAM5qP0noEtL1sZUe3wZmZ6vQArkSTcc:tzhY1pK2ECUXfdEdJ1sq4wZip1kcc

Score
1/10

Malware Config

Signatures

  • Modifies registry class 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Photoshop.exe
    "C:\Users\Admin\AppData\Local\Temp\Photoshop.exe"
    1⤵
      PID:2468
    • C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
      "C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
      1⤵
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:4940

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
            Filesize

            11KB

            MD5

            cd56e155edf53e5728c46b6c9eb9c413

            SHA1

            14b1b0f090803c9ee39797aed4af13dc7849566d

            SHA256

            70a6cf268c013fb4d907bedc12af3e5f802f179f0cc8353c7b8227dde840d31a

            SHA512

            a4ada455d44a89fd2baa505aa9266b70913967b839522ef5da8d7afd31af6662c3ad96ac3e3531d82a72be7d019c9d88f1ce391c5b5fa0e4422a634c51491165

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
            Filesize

            11KB

            MD5

            3569ff1aa5310102ef02c312ca4dbe9a

            SHA1

            4124b1e805d5c487bf86182d19ed22bed6cf44ac

            SHA256

            3ce1168408eb889f65cd4d45c12c58842a4291356c835cfb1877d017b6768a9b

            SHA512

            c966ebf69abce51aa4fbec1e53f43485786cbeb5fb6cea18eb3407b7d4c7a212a6843b69965de9f577c483c6139840d0f7fe56d69fc8c97e6b0884b75b7aed8d

            Download Submit