Overview

overview

1

Static

static

1

f89e565d3e...28.exe

windows7-x64

1

f89e565d3e...28.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2024, 02:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f89e565d3e73984e9b538fba979c8798f06775706cde8ecd1a921c61fecf2d28.exe

  • Size

    4.2MB

  • MD5

    024547ee3841ed6035b7bb9866452713

  • SHA1

    8f1c8a12cecaeb4f15f3d2a3332073a0b1aefb36

  • SHA256

    f89e565d3e73984e9b538fba979c8798f06775706cde8ecd1a921c61fecf2d28

  • SHA512

    fc846fa5432d41973f30c4ee16b197079fb344322d1023c5bf31aa1bbab72d53094f2b17422471a292fbc9250dcb176b6ae2b78a883087689ca2bb9db1205545

  • SSDEEP

    98304:U+lJEOkhs24Ld+EDkWMnwS5cAS4zqmCqTyYf7Xu3JkQrcmo:zpq24zqmCqWI7XSXrcx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f89e565d3e73984e9b538fba979c8798f06775706cde8ecd1a921c61fecf2d28.exe
    "C:\Users\Admin\AppData\Local\Temp\f89e565d3e73984e9b538fba979c8798f06775706cde8ecd1a921c61fecf2d28.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1624

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\d1991aeb
    Filesize

    1.2MB

    MD5

    d39e706474d16261ec9b1cb57adbd1ee

    SHA1

    a0b19ed7e6ceb4ef12fedf717f019b1c6f07864a

    SHA256

    21a8d114f403a17e319eed493d5bd411201fdc8a6077d6da016fba16cc711135

    SHA512

    0e786655120af5cff93bb574aa1568fccdebcaf0ffe56ce4338a407947b9cc4b34f4e2be6f4300f9d868e5160b5129a98a1c04c359efe3e2ff7a7b365eb12699

    Download Submit

  • memory/1624-1-0x000000000052C000-0x0000000000533000-memory.dmp

    Filesize

    28KB

    Download

  • memory/1624-0-0x0000000000400000-0x0000000000837000-memory.dmp

    Filesize

    4.2MB

    Download

  • memory/1624-7-0x0000000074950000-0x00000000749E7000-memory.dmp

    Filesize

    604KB

    Download