Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    10-11-2024 00:25

General

  • Target

    popr.chm

  • Size

    95KB

  • MD5

    754067a9b2c739e95fe5ea7a0d44275c

  • SHA1

    ee1f28cdc0577eeb1e4164e783f4f4093daf1aff

  • SHA256

    3a9aa48d676f40d541267ba7a921e7cd44e4402cf45b1b78933c3ffed3938c3d

  • SHA512

    babcc97b832412770aa2bea269d114bb2c248fce9fed4f817a036ea2aba60fc0aefe8d7e60e7bf1c24481972fae09003906a7a1d41be2a5343c2cb0f8d1a3652

  • SSDEEP

    1536:GBFu+UKhHE81DSpaXF9ayDaYJjS2gNlPTQwSVvcXvQ2tIdrcK4BeIS2t9qmabl1k:4FlUEB1D1V9a8/j0NhT1c042mgKNItvp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" C:\Users\Admin\AppData\Local\Temp\popr.chm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:2024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads