Overview

overview

3

Static

static

3

a173a425d1...c2.exe

windows7-x64

1

a173a425d1...c2.exe

windows10-2004-x64

1

Resubmissions

06/09/2024, 16:44

240906-t8sztsxbjq 3

06/09/2024, 16:40

240906-t6jy5sxeje 3

Analysis

  • max time kernel
    1s
  • max time network
    66s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/09/2024, 16:40

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a173a425d17b6f2362eca3c8ea4de9860b52faba414bbb22162895641dda0dc2.exe

  • Size

    226KB

  • MD5

    9760f489a390665b5e7854429b550c83

  • SHA1

    e9a707ed1cc0a98d17a67a53b3220e8581e78fcc

  • SHA256

    a173a425d17b6f2362eca3c8ea4de9860b52faba414bbb22162895641dda0dc2

  • SHA512

    3aec5e9a776582b082f072a041e5d11d849d07d8451fa23a275c0665ddb080ef468281da89853d080312a8ca7d9974e23e9c0b10f878ec6933f67012152356b2

  • SSDEEP

    3072:m9cNTWTsmxeyjk/iMi5+DX2nAtiLbYkVj4Psw40gAr:m9kTSA/iMiWX2nAQHY4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a173a425d17b6f2362eca3c8ea4de9860b52faba414bbb22162895641dda0dc2.exe
    "C:\Users\Admin\AppData\Local\Temp\a173a425d17b6f2362eca3c8ea4de9860b52faba414bbb22162895641dda0dc2.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    PID:2304
  • C:\Windows\system32\dwm.exe
    "dwm.exe"
    1⤵
      PID:4664
    • C:\Windows\system32\dwm.exe
      "dwm.exe"
      1⤵
        PID:680
      • C:\Windows\system32\dwm.exe
        "dwm.exe"
        1⤵
          PID:1524
        • C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
          "C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
          1⤵
            PID:3468

          Network

                MITRE ATT&CK Matrix

                Replay Monitor

                Loading Replay Monitor...

                Downloads

                • C:\Users\Admin\AppData\Roaming\Microsoft\desktops.ini
                  Filesize

                  230B

                  MD5

                  d22df8c29c61f51017eb48423d2eea2d

                  SHA1

                  13a4748a43321eb4aca6ee8a8dc2d0b7f899164a

                  SHA256

                  dd825aa8840d1f31169328d09fa7d75b869d894d000e6d26eb894cfa40d7edf6

                  SHA512

                  a03efe821cc9ed1a613a4e801b0adf4157026e86201d979646844ef2338d3b845ac95cb6d161b1012cb3833c5d2520877c39edc1fe9f3cd922e536e3ee5a5b64

                  Download Submit