Resubmissions
23/08/2024, 16:00
240823-tf47dsteqe 623/08/2024, 15:32
240823-sy293sseld 423/08/2024, 15:18
240823-sp1d5athqk 823/08/2024, 14:12
240823-rjcv7sydnd 723/08/2024, 02:33
240823-c17dta1cpd 723/08/2024, 02:11
240823-cmbpzszelg 423/08/2024, 02:00
240823-ce59mazbnh 423/08/2024, 01:37
240823-b1992a1dmm 523/08/2024, 01:24
240823-bsm5jazhpp 523/08/2024, 00:51
240823-a7p21awhld 6Analysis
-
max time kernel
136s -
max time network
168s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
23/08/2024, 15:18
General
-
Target
Magnify.exe
-
Size
732KB
-
MD5
a9dbf174798cd03adc0b7a1adf493c76
-
SHA1
23a5b59677a06a7c93dea8bf822ae1de355902b2
-
SHA256
8d9f9ea080229ab3e37a58fac74bf0cfae89d04c5735f5111bdb982489526acf
-
SHA512
9e73ed6f15f56dccee8eb59a13dcb6a3110b0f711166c3ee8efdff4a70ff15bd9ad4797ff105c1d9d055717d789b50695ce7326b4b435a4ab86f7bc3a1440bdd
-
SSDEEP
6144:WFNGPP4aSUG484rRGgN8jZpkknnfG4MHnmGg9WCyeuVx1uSx63gDWQmUasVCVSuM:WqPgaSUG4Fr7NmZnmVgICkduS03ce
Score
3/10
Malware Config
Signatures
-
Event Triggered Execution: Accessibility Features 1 TTPs
Windows contains accessibility features that may be used by adversaries to establish persistence and/or elevate privileges.
-
Modifies Control Panel 1 IoCs
-
Suspicious use of SetWindowsHookEx 5 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\Magnify.exe"C:\Users\Admin\AppData\Local\Temp\Magnify.exe"1⤵
- Modifies Control Panel
- Suspicious use of SetWindowsHookEx