Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04-07-2024 19:03

General

  • Target

    CAD迷你画图/CAD迷你画图.exe

  • Size

    58.8MB

  • MD5

    8618247cd1d9147e819d443b6c07cc3c

  • SHA1

    1ba07cfc8ed6b990dfcd60a12527f7cdd8699ea1

  • SHA256

    e623a013196f5d9c2ae248091c835fb1291a1d30f552d9fbf74af3be622a713c

  • SHA512

    1ffa13f18da4815f6fdd548f09a599007c441980bdac448d8740abfe5458532d7de185bc8f0970c54df499c2ec7160a55936074a8d02e15b8c2c7be2dc5bc189

  • SSDEEP

    1572864:/FcaaoFSyHS+dLzEaBo4SpF7C1lIelaoepL4XzLld6DT:/iCwWf6DT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 11 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\CAD迷你画图\CAD迷你画图.exe
    "C:\Users\Admin\AppData\Local\Temp\CAD迷你画图\CAD迷你画图.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads