Overview

overview

3

Static

static

3

WinTools.n...sh.chm

windows7-x64

1

WinTools.n...sh.chm

windows10-2004-x64

1

WinTools.n...an.chm

windows7-x64

1

WinTools.n...an.chm

windows10-2004-x64

1

WinTools.n...ds.chm

windows7-x64

1

WinTools.n...ds.chm

windows10-2004-x64

1

WinTools.n...an.chm

windows7-x64

1

WinTools.n...an.chm

windows10-2004-x64

1

WinTools.n...sh.chm

windows7-x64

1

WinTools.n...sh.chm

windows10-2004-x64

1

WinTools.n...ta.exe

windows7-x64

3

WinTools.n...ta.exe

windows10-2004-x64

3

WinTools.n...ge.exe

windows7-x64

3

WinTools.n...ge.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    91s
  • max time network
    139s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-09-2024 12:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WinTools.net Ultimate/Help/nederlands.chm

  • Size

    39KB

  • MD5

    d699cfbd1a4f2643d36182e50bdeb14b

  • SHA1

    34dd184b8e04830e489b5dd5b5e5a54f7a8e464a

  • SHA256

    975cdc55e13101b156af616998a7c9a37a0e9ccf762b578f4756d43af66f3766

  • SHA512

    80514c6262a37025cc7fb1b14059f4a723b584666f190f749964dbdbc1605fd68577779e484371f74af4151a0d548eaff52cd6eb7a9a7a130f38da841c94545a

  • SSDEEP

    768:g/btLRz9FhV/vGhxgwOejyehxOfISPNU68C4B:g/ZdHhRSrLx/SPNU68C4B

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\WinTools.net Ultimate\Help\nederlands.chm"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3840

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads