Overview

overview

5

Static

static

3

88e124eca8...70.exe

windows7-x64

5

88e124eca8...70.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    25-06-2024 20:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    88e124eca8026d7b891da5de273c2ebce6a916bfd983815c583c0d4a0ad3f670.exe

  • Size

    9.3MB

  • MD5

    60b1f617f9f24e287d25ca621503d2b9

  • SHA1

    24b90dfa5bd4e8b72b264bf4020515108ffa3d26

  • SHA256

    88e124eca8026d7b891da5de273c2ebce6a916bfd983815c583c0d4a0ad3f670

  • SHA512

    9b0e9def86f2007735f1f896d30c03c60672118866e50ac497260ad4f229a8e1cbc461325383c7700420c1670b12543775592de5874ae2d4026a3f91acc0d5b3

  • SSDEEP

    196608:nZoi1sN+J7Dq75Sl+huWSrXYABwRt7Kiesad+Z:nZf1g74bWMoFRNWsa

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\88e124eca8026d7b891da5de273c2ebce6a916bfd983815c583c0d4a0ad3f670.exe
    "C:\Users\Admin\AppData\Local\Temp\88e124eca8026d7b891da5de273c2ebce6a916bfd983815c583c0d4a0ad3f670.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1792-4-0x00000000003F0000-0x00000000003F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-2-0x00000000003F0000-0x00000000003F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-0-0x00000000003F0000-0x00000000003F1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-7-0x0000000001980000-0x0000000001981000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-5-0x0000000001980000-0x0000000001981000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-9-0x0000000001980000-0x0000000001981000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-12-0x0000000001990000-0x0000000001991000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-14-0x0000000001990000-0x0000000001991000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-30-0x0000000001C60000-0x0000000001C61000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-34-0x0000000001C60000-0x0000000001C61000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-32-0x0000000001C60000-0x0000000001C61000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-29-0x0000000001C50000-0x0000000001C51000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-27-0x0000000001C50000-0x0000000001C51000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-24-0x0000000001C40000-0x0000000001C41000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-22-0x0000000001C40000-0x0000000001C41000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-19-0x0000000001C30000-0x0000000001C31000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-17-0x0000000001C30000-0x0000000001C31000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1792-36-0x0000000000B58000-0x0000000000EA3000-memory.dmp

    Filesize

    3.3MB

    Download

  • memory/1792-39-0x0000000000400000-0x00000000017E4000-memory.dmp

    Filesize

    19.9MB

    Download

  • memory/1792-40-0x0000000000B58000-0x0000000000EA3000-memory.dmp

    Filesize

    3.3MB

    Download

  • memory/1792-41-0x0000000000400000-0x00000000017E4000-memory.dmp

    Filesize

    19.9MB

    Download