279f334ec8521dfec80cfc186e709f88c88a030515024c9ef16f7063aec9dbbb | Triage

Analysis

max time kernel
150s
max time network
156s
platform
windows7_x64
resource
win7
submitted
30-06-2020 13:34

Sharing

Report Analysis Logs

General

Target

cgc.bin.exe
Size

25KB
MD5

6516bedffc29d38b6694c9c4fe5133e0
SHA1

53d6e4f4618cde418a522688a1fa67dd2368ee3d
SHA256

279f334ec8521dfec80cfc186e709f88c88a030515024c9ef16f7063aec9dbbb
SHA512

27dd50ac74a5753df93bd75c1cfd8c621b04e552d406307338e5ecd1cc85e65e6054b50dc2126a3b27fb280e63f2a7ba45788f963eb1ef3d7e4eaa867db76c1d

Score

7^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

cgc.bin.exe

pid process

1124 cgc.bin.exe
1124 cgc.bin.exe
Drops startup file 1 IoCs

Processes:

cgc.bin.exe

description ioc process

File created C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winup.lnk cgc.bin.exe

C:\Users\Admin\AppData\Local\Temp\cgc.bin.exe
"C:\Users\Admin\AppData\Local\Temp\cgc.bin.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Drops startup file
PID:1124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1124-0-0x0000000002F30000-0x0000000002F41000-memory.dmp

Filesize
68KB

Download
memory/1124-1-0x0000000003340000-0x0000000003351000-memory.dmp

Filesize
68KB

Download
memory/1124-2-0x0000000002F30000-0x0000000002F41000-memory.dmp

Filesize
68KB

Download