Overview

overview

7

Static

static

3

DFX.for.Re...up.exe

windows7-x64

7

DFX.for.Re...up.exe

windows10-2004-x64

7

$COMMONFIL...an.exe

windows7-x64

3

$COMMONFIL...an.exe

windows10-2004-x64

3

$COMMONFIL...ni.exe

windows7-x64

3

$COMMONFIL...ni.exe

windows10-2004-x64

3

$COMMONFIL...FX.exe

windows7-x64

3

$COMMONFIL...FX.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$_0_/dfxbtn.dll

windows7-x64

3

$_0_/dfxbtn.dll

windows10-2004-x64

3

$_1_/dfxrealr.dll

windows7-x64

3

$_1_/dfxrealr.dll

windows10-2004-x64

3

RealPlayer...te.exe

windows7-x64

1

RealPlayer...te.exe

windows10-2004-x64

3

RealPlayer...il.exe

windows7-x64

1

RealPlayer...il.exe

windows10-2004-x64

3

RealPlayer...rs.exe

windows7-x64

1

RealPlayer...rs.exe

windows10-2004-x64

3

RealPlayer...al.chm

windows7-x64

1

RealPlayer...al.chm

windows10-2004-x64

1

DFX.for.Re...pk.dll

windows7-x64

7

DFX.for.Re...pk.dll

windows10-2004-x64

7

Analysis

  • max time kernel
    95s
  • max time network
    102s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-10-2024 01:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RealPlayer/Help/DFX Manual.chm

  • Size

    196KB

  • MD5

    9c2b548307211a9d44ac017986c12c73

  • SHA1

    880355eeedf634376a8e3d0e801b988057e45e6c

  • SHA256

    a755f8559649f71b530ec8545d18c65582ee255bc42174984f70119a61757692

  • SHA512

    bc76e6e55b71f1274d7a404a3dd3c8fccf83818fbff12b8bcd3ab4d500e2523ca32217cd2e2e48a739845b850531db29b9d77d361d75e7ee20a0e639f8f8d15d

  • SSDEEP

    6144:dh4LY9ImNtbjWTpEVIvxFaMb8l5IntRZKlmb:34LY9IYt3U2BMb8KtWlS

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" "C:\Users\Admin\AppData\Local\Temp\RealPlayer\Help\DFX Manual.chm"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads