Overview

overview

5

Static

static

3

23385f9742...ec.exe

windows7-x64

5

23385f9742...ec.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 04:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    23385f974213c1b5b1761857a184c634251ff379e8588e676efd1ead46fbb4ec.exe

  • Size

    8.3MB

  • MD5

    448632e9fb5f470adfbf7f3e4934cb6c

  • SHA1

    41c4bd50c73bf3bd787d2546c4cf0760fd10657c

  • SHA256

    23385f974213c1b5b1761857a184c634251ff379e8588e676efd1ead46fbb4ec

  • SHA512

    526b3442c8ddea1de798107761f5b5d065c7a87af8c11811941135a3f7e0225497d280436bf1c1172f384432d5a3c71ea8a5abb97a2ab8be811815d4b3ddd412

  • SSDEEP

    196608:QFNUTh4idxJ+XEcUSQcEPOaT/R6x6NIIrnuYLm8WnoQvLrg1zC:hlxs0c99aS6OIrnmtnpLU1zC

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 3 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\23385f974213c1b5b1761857a184c634251ff379e8588e676efd1ead46fbb4ec.exe
    "C:\Users\Admin\AppData\Local\Temp\23385f974213c1b5b1761857a184c634251ff379e8588e676efd1ead46fbb4ec.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:2416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2416-0-0x0000000000400000-0x00000000016AA000-memory.dmp

    Filesize

    18.7MB

    Download

  • memory/2416-2-0x0000000000401000-0x0000000001487000-memory.dmp

    Filesize

    16.5MB

    Download

  • memory/2416-1-0x0000000000400000-0x00000000016AA000-memory.dmp

    Filesize

    18.7MB

    Download

  • memory/2416-3-0x0000000000400000-0x00000000016AA000-memory.dmp

    Filesize

    18.7MB

    Download

  • memory/2416-4-0x0000000000401000-0x0000000001487000-memory.dmp

    Filesize

    16.5MB

    Download