aa7f639048e93e2a842f94d592dcc4334d16dd583fe849cc88bbb97f5f0b8997

Analysis

max time kernel
131s
max time network
134s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
20-07-2024 01:04

Target

spoofer-scheduler.exe
Size

7.9MB
MD5

2b571ef2d50ed9f42d09a34899358b17
SHA1

81c1bef20a6f57695199558dee6e0b02c78ff473
SHA256

4a0b7ca3b39fa30914f0117d87dcf636490bb590f1e35a86689982b5ec3848a7
SHA512

8302d6862eb5f4aa6a376dd46e68e780038aef6a570f39e315210e03de203bda0c35c5565283920d3a4fef1b3a99f6cbaf2160791f77d54444d9c207dea394b3
SSDEEP

196608:TXmy72T4NQdwQ1qWAVCB3GAB5VTPCNiwEk7BHwrxKBXbvPJsv6tWKFdu9C7:DgJNCsL+HwiXbHJsv6tWKFdu9C7

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

Processes:

spoofer-scheduler.exe

pid process

2616 spoofer-scheduler.exe

pid	process
2616	spoofer-scheduler.exe

C:\Users\Admin\AppData\Local\Temp\spoofer-scheduler.exe
"C:\Users\Admin\AppData\Local\Temp\spoofer-scheduler.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2616

memory/2616-0-0x0000000000400000-0x0000000000BF4000-memory.dmp

Filesize
8.0MB

Download