Overview

overview

7

Static

static

7

pcpairv1/P...V1.exe

windows7-x64

7

pcpairv1/P...V1.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/07/2024, 23:46

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    pcpairv1/PCRepairV1.exe

  • Size

    616KB

  • MD5

    bcfebed70fbdfa76d875ccf6863b6209

  • SHA1

    ed8d605e46fded4bcc7a1afd4036c1d632af716b

  • SHA256

    069efa0e6d9235d85a3ff67be79c452f0c22cdeb27d831a609e9979448e72ae9

  • SHA512

    4b06cc16ef0b22c2d076ed3941f6148bcdbe027a3c980ed1e76469a2e8995ee8f51307ed58ec1cdb1281dc8cb3308dfcd5af02e31dd7176dcc8d5c2a65681106

  • SSDEEP

    12288:YDH0wryj/0wed+t1LEt2+Us9njHen+jRNxWY1Ua86Hq/aqb4v/Ntf6F1:kH096XbUs9njHL7QKf862a/v/Nt6P

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\pcpairv1\PCRepairV1.exe
    "C:\Users\Admin\AppData\Local\Temp\pcpairv1\PCRepairV1.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:752

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/752-0-0x0000000000400000-0x00000000005BC000-memory.dmp

          Filesize

          1.7MB

          Download

        • memory/752-1-0x0000000000890000-0x0000000000891000-memory.dmp

          Filesize

          4KB

          Download

        • memory/752-4-0x0000000000400000-0x00000000005BC000-memory.dmp

          Filesize

          1.7MB

          Download

        • memory/752-6-0x0000000000890000-0x0000000000891000-memory.dmp

          Filesize

          4KB

          Download