Analysis
-
max time kernel
361s -
max time network
362s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
23-01-2025 20:19
General
-
Target
Rdp Cracking tool @ virusbug1/KPortScan 3.0 @virusbug1/KPortScan3 @virusbug1.exe
-
Size
191KB
-
MD5
47e24bb0723a41606259b71c34b2e5e2
-
SHA1
dec3e4e1509d293058848d53af25b0cfba804cdd
-
SHA256
476c5a362a758bca9ac441b673cd0777982ea3a6ca13b4299c3ff15c780262a4
-
SHA512
a125b431e2add3e74eb58d3abe26063ab8d846e625c144ecee6dc1ef599b1dd783ef5757c9dfa37e446210649b6426575333b4607db523ad7bd556fc60ef7d96
-
SSDEEP
3072:FwYXnaz7fOTkQTwokTqLIOt6r+9dEPlUIbrMOFTfM0OZhEt3hjOrX7a0K2gY7fq2:y+naz7OTkNPTqLIOt6r+9dEPlUIbrMOE
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\Rdp Cracking tool @ virusbug1\KPortScan 3.0 @virusbug1\KPortScan3 @virusbug1.exe"C:\Users\Admin\AppData\Local\Temp\Rdp Cracking tool @ virusbug1\KPortScan 3.0 @virusbug1\KPortScan3 @virusbug1.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx