97b7073f19e4c951aac5df92761f56f79a9fd71a6580355b2a0e35a6f5bbe403

Analysis

max time kernel
140s
max time network
123s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
08/07/2024, 12:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
Size

13KB
MD5

8cd30227a97b09a84da7eb83893722d9
SHA1

62112065179e1c8ccb2ca3982cc1040808908193
SHA256

97b7073f19e4c951aac5df92761f56f79a9fd71a6580355b2a0e35a6f5bbe403
SHA512

1e095fb67868e03fb1c3989c209209cc5d2fbbcba0dcce04eb301af6c3f489af50d4390d7912ef1a0fb7c76b7d8b49fa4666958346023f1748a0d99f4ba8eb69
SSDEEP

384:HW+G3XqrMJEJAmQzbOdQBdzjNJawcudoD7UAMv4Hfl:hG3XqruGQzbOubnnbcuyD7U7wHfl

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2688	44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe

C:\Users\Admin\AppData\Local\Temp\44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe
"C:\Users\Admin\AppData\Local\Temp\44d42ece30e2d7afe9d31ef7947a2615d035070da1e01929121d354ed6607a8d_dump3.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
PID:2688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2688-0-0x0000000000400000-0x000000000040C000-memory.dmp

Filesize
48KB

Download
memory/2688-3-0x0000000000400000-0x000000000040C000-memory.dmp

Filesize
48KB

Download