Overview
overview
8Static
static
1AVG Anti-S...��.bat
windows7-x64
6AVG Anti-S...��.bat
windows10-2004-x64
6AVG Anti-S...��.bat
windows7-x64
7AVG Anti-S...��.bat
windows10-2004-x64
7AVG Anti-S...ll.bat
windows7-x64
8AVG Anti-S...ll.bat
windows10-2004-x64
8AVG Anti-S...ll.bat
windows7-x64
1AVG Anti-S...ll.bat
windows10-2004-x64
1AVG Anti-S...as.exe
windows7-x64
7AVG Anti-S...as.exe
windows10-2004-x64
7AVG Anti-S...64.sys
windows7-x64
1AVG Anti-S...64.sys
windows10-2004-x64
1AVG Anti-S...ln.sys
windows7-x64
1AVG Anti-S...ln.sys
windows10-2004-x64
1AVG Anti-S...xt.dll
windows7-x64
1AVG Anti-S...xt.dll
windows10-2004-x64
1AVG Anti-S...64.dll
windows7-x64
7AVG Anti-S...64.dll
windows10-2004-x64
7AVG Anti-S...ne.dll
windows7-x64
1AVG Anti-S...ne.dll
windows10-2004-x64
1AVG Anti-S...rd.exe
windows7-x64
1AVG Anti-S...rd.exe
windows10-2004-x64
1AVG Anti-S...rd.sys
windows7-x64
1AVG Anti-S...rd.sys
windows10-2004-x64
1AVG Anti-S...64.sys
windows7-x64
1AVG Anti-S...64.sys
windows10-2004-x64
1AVG Anti-S...lp.chm
windows7-x64
1AVG Anti-S...lp.chm
windows10-2004-x64
1AVG Anti-S...ok.dll
windows7-x64
1AVG Anti-S...ok.dll
windows10-2004-x64
1AVG Anti-S...64.dll
windows7-x64
7AVG Anti-S...64.dll
windows10-2004-x64
7Analysis
-
max time kernel
92s -
max time network
102s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
27/06/2024, 11:47
Static task
static1
Behavioral task
behavioral1
Sample
AVG Anti-Spyware/!)右鍵解除.bat
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral2
Sample
AVG Anti-Spyware/!)右鍵解除.bat
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
AVG Anti-Spyware/!)右鍵设置.bat
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral4
Sample
AVG Anti-Spyware/!)右鍵设置.bat
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
AVG Anti-Spyware/1)install.bat
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral6
Sample
AVG Anti-Spyware/1)install.bat
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
AVG Anti-Spyware/1)uninstall.bat
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral8
Sample
AVG Anti-Spyware/1)uninstall.bat
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
AVG Anti-Spyware/avgas.exe
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral10
Sample
AVG Anti-Spyware/avgas.exe
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
AVG Anti-Spyware/avgasc64.sys
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral12
Sample
AVG Anti-Spyware/avgasc64.sys
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
AVG Anti-Spyware/avgascln.sys
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral14
Sample
AVG Anti-Spyware/avgascln.sys
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
AVG Anti-Spyware/context.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral16
Sample
AVG Anti-Spyware/context.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
AVG Anti-Spyware/context64.dll
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral18
Sample
AVG Anti-Spyware/context64.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
AVG Anti-Spyware/engine.dll
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral20
Sample
AVG Anti-Spyware/engine.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
AVG Anti-Spyware/guard.exe
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral22
Sample
AVG Anti-Spyware/guard.exe
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
AVG Anti-Spyware/guard.sys
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral24
Sample
AVG Anti-Spyware/guard.sys
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
AVG Anti-Spyware/guard64.sys
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral26
Sample
AVG Anti-Spyware/guard64.sys
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
AVG Anti-Spyware/help.chm
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral28
Sample
AVG Anti-Spyware/help.chm
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
AVG Anti-Spyware/shellexecutehook.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral30
Sample
AVG Anti-Spyware/shellexecutehook.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
AVG Anti-Spyware/shellexecutehook64.dll
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral32
Sample
AVG Anti-Spyware/shellexecutehook64.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
General
-
Target
AVG Anti-Spyware/help.chm
-
Size
1.4MB
-
MD5
3ab4f6896e59e9fb86a4beac0595e785
-
SHA1
27d5bf385dd2411e17ae19a56bdc9ca85987e83d
-
SHA256
a057a515e74998535fef308abd01fc2f1a6ec8d4ae4073baebcf5ef160b84678
-
SHA512
ddf3c8abff0285aa9db8d30a59e34a4562cdf5ea274294349eee3ff52d226533317568ae450a5d8024bc182fe82f51f66461b3fcb10baffde5644907e4f45203
-
SSDEEP
24576:RJB2JyvKZ+p1tUW8QcPCoEhuhz5MxLaWHyXG6FXe+5Lh6KpXzLedkfS1X+D:B7vKZ+eJPCQN58efHFBh6Wlfr
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 3644 hh.exe 3644 hh.exe