Overview

overview

3

Static

static

3

WinTools.n...sh.chm

windows7-x64

1

WinTools.n...sh.chm

windows10-2004-x64

1

WinTools.n...an.chm

windows7-x64

1

WinTools.n...an.chm

windows10-2004-x64

1

WinTools.n...ds.chm

windows7-x64

1

WinTools.n...ds.chm

windows10-2004-x64

1

WinTools.n...an.chm

windows7-x64

1

WinTools.n...an.chm

windows10-2004-x64

1

WinTools.n...sh.chm

windows7-x64

1

WinTools.n...sh.chm

windows10-2004-x64

1

WinTools.n...ta.exe

windows7-x64

3

WinTools.n...ta.exe

windows10-2004-x64

3

WinTools.n...ge.exe

windows7-x64

3

WinTools.n...ge.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    93s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/09/2024, 12:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WinTools.net Ultimate/Help/english.chm

  • Size

    37KB

  • MD5

    29aa572f184d9a3954a3fc09d717480f

  • SHA1

    f5a25d5fda486b6d60b5217b5988149b661bebd9

  • SHA256

    cb450bba7d017d45bc311af22f3ada0274946705bfa838ca31094d25c25d6767

  • SHA512

    14ef3d8459264b101df3fe64785e0912065748825cc86aaf59e7c48e74ffbbe9e47cc170b4f29fb49415f904e9d87d66b7e341d6d29f191289eb9a8469e5456d

  • SSDEEP

    768:OFU5bLPbieCIY7BgLuDGokGYxUHdUSaVAQn8l7N4HANwFAivE:OFU5nb1ygLua33UH6VfTHANJJ

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\WinTools.net Ultimate\Help\english.chm"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1328

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads