a0457d69830ac38f45f672e712b46a3ee2d57c504e251eca446c3f7b68cb8b8e | Triage

Analysis

max time kernel
141s
max time network
96s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15-07-2024 21:54

Sharing

Report Analysis Logs

General

Target

VisualBat/VisualBat.exe
Size

1.4MB
MD5

24409c661ddec78c3ccf64c0f7b2dc5a
SHA1

2e537fb85875dd81688bb0cbe9c2bbb9994e7787
SHA256

591c7d9c57166d2ea5b24a08e60163a18f2ea974dfd3ddf5d9bef364333060c6
SHA512

02fcb2235db611b71dd7f33af9fc5f9bb03037d5ca640dd50a71b16e0ace6ea40e05c26c5d54e2f2d5460cf45ba372dd0492db49739011e86e769f733fa2b2ce
SSDEEP

24576:7vvxCBJACRWYHivaiGb3gHBLx4AsCxaRDYyZqIDH7zW/F4TU:7nxaRWyIrNFxa1ZbStH

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4832	VisualBat.exe

C:\Users\Admin\AppData\Local\Temp\VisualBat\VisualBat.exe
"C:\Users\Admin\AppData\Local\Temp\VisualBat\VisualBat.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4832

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4832-0-0x00000000006B0000-0x00000000006B1000-memory.dmp

Filesize
4KB

Download
memory/4832-1-0x0000000000400000-0x0000000000567000-memory.dmp

Filesize
1.4MB

Download
memory/4832-3-0x00000000006B0000-0x00000000006B1000-memory.dmp

Filesize
4KB

Download