Overview

overview

10

Static

static

3

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

5

Analysis

  • max time kernel
    294s
  • max time network
    300s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    20/06/2024, 23:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e8fa8c508dd07c17b2ee3fa9a5ca38d53308a67b00e303d97c79b3d2190a201c.exe

  • Size

    1.3MB

  • MD5

    ff10866584c65b97da14051357bb81e0

  • SHA1

    421400516c3075999934fabcaa2a3fb398fa0128

  • SHA256

    e8fa8c508dd07c17b2ee3fa9a5ca38d53308a67b00e303d97c79b3d2190a201c

  • SHA512

    814829d5a8ee369da2d65f5fd9e458483b36e4b97b1da5265af122cdd27d5b9a3cb1cd968e3d061496140f4626f00dfe6dddc517bf41979c5186d562127c1499

  • SSDEEP

    24576:QWseOknDWF5QrtEBtbZ87NpFvPAcwQwPyEvODQs9Pk4npa:aknyF5Re7vBPAclw48s9Pkc

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 30 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e8fa8c508dd07c17b2ee3fa9a5ca38d53308a67b00e303d97c79b3d2190a201c.exe
    "C:\Users\Admin\AppData\Local\Temp\e8fa8c508dd07c17b2ee3fa9a5ca38d53308a67b00e303d97c79b3d2190a201c.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:3936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3936-2-0x0000000001464000-0x0000000001502000-memory.dmp

    Filesize

    632KB

    Download

  • memory/3936-0-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-1-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-4-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-5-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-6-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-7-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-8-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-9-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-10-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-11-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-12-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-13-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-14-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-15-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-16-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-17-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-18-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-19-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-20-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-21-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-22-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-23-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-24-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-25-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-26-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-27-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-28-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-29-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-30-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-31-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-32-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/3936-33-0x0000000000FD0000-0x0000000001502000-memory.dmp

    Filesize

    5.2MB

    Download