9012a47a33830ca75305a1648ff073143561cd7b102e93563a1eda196be3840d

Analysis

max time kernel
94s
max time network
115s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
08/09/2024, 23:28

Target

Shut Down Expert/Help.chm
Size

360KB
MD5

6928480e58bf85c8fa54201d17df2abe
SHA1

cd5ae880baac26e4c14f49f14bc3100cd798f429
SHA256

c9e01953c13cc23f526a7769dc9ac0d748b93c624f009ad2a46ea5e6f3f04cb4
SHA512

16a62a36e351f068779a9d50030349cf86382782a628ce5b6efcff5d4f02e8dfced42c6945dfbf3b1289b3df557521a33a941954a9e20ffcfebdd6450776dcee
SSDEEP

6144:ntM5ZkKBCoulWbZGW32J2MfwuC3iHHsWEui/5iNWLjawepJtpVURyGoPvve88DMG:tMLknd2ZGP2EwuC3iHMWEJhfvawejHG5

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2592	hh.exe
2592	hh.exe

C:\Windows\hh.exe
"C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\Shut Down Expert\Help.chm"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2592