Overview

overview

7

Static

static

7

838f069018...18.exe

windows7-x64

7

838f069018...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

help.chm

windows7-x64

1

help.chm

windows10-2004-x64

1

hurrun.exe

windows7-x64

7

hurrun.exe

windows10-2004-x64

7

import.dll

windows7-x64

7

import.dll

windows10-2004-x64

7

mousehook.dll

windows7-x64

7

mousehook.dll

windows10-2004-x64

7

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09-08-2024 21:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    help.chm

  • Size

    976KB

  • MD5

    e0fc2136523b81db7b317a054efde6f7

  • SHA1

    5d6681e6f6167ef68617a27799027e964c65d6c2

  • SHA256

    9e3d69993bfdb5b998cff62a432ab028219e6b8cbe0ee8a61f1ebd65583071b9

  • SHA512

    c58bd278fe2bac5a163bf7f43e41450c0d04aba2a5b0f3ce76a9f960f420942509db88ed15df7d7062777630f2b435aeb93cbd9e2723a24df57dab8782080897

  • SSDEEP

    24576:GPLimLT3dZ2KzckoDb0rzdLRH/H/Q7FjsrsRb/nPc+lkO:GPOw3dZrgJXuddwJjgsBnPvlX

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" C:\Users\Admin\AppData\Local\Temp\help.chm
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads