Overview

overview

3

Static

static

3

Salad.exe

windows7-x64

1

Salad.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    115s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/09/2024, 00:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Salad.exe

  • Size

    2.7MB

  • MD5

    839ddeb57dce73e6f354499323933378

  • SHA1

    bb4b28011018e51adb9a5310ec54fcf9a2cecf51

  • SHA256

    c7070b6c4f86315a7f441104c11cfa075d199d10f58d4a6def42e0fba3834426

  • SHA512

    aa75ec396f34e097226c5c03dce99f1c356117e49e2a1ee42c675352730b1d5f96224e798b63bd45da539dbc102d3a0f77f4491910b9ccdba138ca9f226ab47d

  • SSDEEP

    49152:NOJvFeII+PiGd/Mx9kmMzWut9qYR9kqXfd+/9ATrgBWBKH8jkDVFCNXODzWS9HfO:NOJvF6wiG5/Wg9q+9kqXf0F9+KH4kpcR

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Salad.exe
    "C:\Users\Admin\AppData\Local\Temp\Salad.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Settings\TopMost.txt
    Filesize

    5B

    MD5

    68934a3e9455fa72420237eb05902327

    SHA1

    7cb6efb98ba5972a9b5090dc2e517fe14d12cb04

    SHA256

    fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa

    SHA512

    719fa67eef49c4b2a2b83f0c62bddd88c106aaadb7e21ae057c8802b700e36f81fe3f144812d8b05d66dc663d908b25645e153262cf6d457aa34e684af9e328d

    Download Submit

  • memory/2044-6-0x00007FF8BD7B0000-0x00007FF8BE271000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2044-2-0x0000028018360000-0x00000280183A2000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2044-3-0x00007FF8BD7B0000-0x00007FF8BE271000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2044-4-0x00000280199E0000-0x0000028019DE6000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/2044-5-0x00007FF8BD7B0000-0x00007FF8BE271000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2044-0-0x00007FF8BD7B3000-0x00007FF8BD7B5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2044-7-0x00000280188B0000-0x00000280188B8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2044-1-0x000002807DB80000-0x000002807DE3A000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2044-19-0x0000028018930000-0x00000280189C4000-memory.dmp

    Filesize

    592KB

    Download

  • memory/2044-26-0x00000280188C0000-0x00000280188CA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2044-18-0x00000280188A0000-0x00000280188AE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2044-27-0x00007FF8BD7B0000-0x00007FF8BE271000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2044-28-0x00007FF8BD7B0000-0x00007FF8BE271000-memory.dmp

    Filesize

    10.8MB

    Download