Overview

overview

7

Static

static

7

NGVCK.exe

windows7-x64

7

NGVCK.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/07/2024, 19:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NGVCK.exe

  • Size

    283KB

  • MD5

    6569a51622256e2a601e27e7e6a56a71

  • SHA1

    2c0498ba27aaf67ccea68135cc4e6789e0f0ffed

  • SHA256

    49c69aeb1a485980b545028ad547c0be8f582f9d083a4994e67c2f9af6ba7670

  • SHA512

    8d0945bf735e153b6811480429c2a7f798f6d4625cbf2855a06c2f5fe3771d6b7d60c4a34cbff0bc26c0c57df236a6337a24b49f8043cd2bb2cf8f8059340961

  • SSDEEP

    6144:RMCdM5hBIApeaatKNvWZxds2xMpxOMH//58lcrnT+O6X:10BIApatKBWZbslxOS8ltO6X

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NGVCK.exe
    "C:\Users\Admin\AppData\Local\Temp\NGVCK.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4480-0-0x0000000000400000-0x00000000004DB000-memory.dmp

    Filesize

    876KB

    Download

  • memory/4480-3-0x0000000000400000-0x00000000004DB000-memory.dmp

    Filesize

    876KB

    Download