Analysis
-
max time kernel
92s -
max time network
105s -
platform
windows10-2004_x64 -
resource
win10v2004-20240704-en -
resource tags
arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system -
submitted
07-07-2024 21:02
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Dope.exe
Resource
win7-20240705-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral2
Sample
Dope.exe
Resource
win10v2004-20240704-en
windows10-2004-x64
3 signatures
150 seconds
General
-
Target
Dope.exe
-
Size
253KB
-
MD5
e12f42043891bf5ac2e710929b51f6ae
-
SHA1
5898cbc203fdd62310ae2011d19339a071cfcfa8
-
SHA256
92baa452554f0bdac10f889a2af9421157b8f9d4ef445649ec1d5a1890e38094
-
SHA512
a4886fd0ede67005fdbf3b47efbb74524c5bcfc10e15211dd4b76e9920c507ffac34efa5e03dcd5f82da1c91973d0f499025754ebb4e00442733af9c10441907
-
SSDEEP
3072:aWtWF7bdNN5ylLzMhu6/zRLq4XJPhEKuEkHBA4dtBA4dC0:XtSPN5ughuaLq6SBA4vBA4I
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 4728 Dope.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 4728 Dope.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 4728 Dope.exe 4728 Dope.exe