3870c7c4684853557475cac74a128c0fb4e227800df248bbef3f030b3ce0ca08 | Triage

Analysis

max time kernel
148s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
14/07/2024, 11:24

Sharing

Report Analysis Logs

General

Target

DIY烧友会RAR附件批量下载工具.exe
Size

60KB
MD5

728edbc477184b9313b368b9a4ca874a
SHA1

3abb7f81d7700f43df5332009df8548ea5e09470
SHA256

aab436332fc50727abce20303f4a5a50aeda49d8ba664ca74a73123c249c2c6c
SHA512

e651308cf5bba6e54f586feb74a59b54b3ebf1e05b4b8c224b81ebac1ed89073bf5d85b2795c36e9f8f92853ffacfc2c95e9b9cc00a7eb75b86c979df732a9bc
SSDEEP

768:bIiFtWnMpT1tUZjBUHT428YLg0EOIsfDYeIAYa/E:bIivWnMJ1GZjaHcNcJwQUe5/E

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
3688	DIY烧友会RAR附件批量下载工具.exe
3688	DIY烧友会RAR附件批量下载工具.exe
3688	DIY烧友会RAR附件批量下载工具.exe

C:\Users\Admin\AppData\Local\Temp\DIY烧友会RAR附件批量下载工具.exe
"C:\Users\Admin\AppData\Local\Temp\DIY烧友会RAR附件批量下载工具.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads