661d12b5e6cb61f54086d48b865ef5989ec00379f52b92fdb68b2ef59eddef43

Analysis

Target

Downloads3/139.bin.exe
Size

1.7MB
MD5

21a20f8d011e93292fccb0ac2a07195e
SHA1

1b41b3bad19eb60a14779fd2267e88128127b88b
SHA256

8ff2e48da213d039b917af0acacfe09ad49bf44211857d0034a0899826d3227e
SHA512

0c40401dbce1b761e8ceebc07057fab376d61094a32126a3c5aa2d70be7153bc3fd77692c9b85f483c45f8b82265e6d7012e661bbe6f8776b87d0695a51679f1

Score

1^/10

Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

139.bin.exe

pid process

1176 139.bin.exe
1176 139.bin.exe

pid	process
1176	139.bin.exe
1176	139.bin.exe

C:\Users\Admin\AppData\Local\Temp\Downloads3\139.bin.exe
"C:\Users\Admin\AppData\Local\Temp\Downloads3\139.bin.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:1176

memory/1176-2-0x0000000002DB0000-0x0000000002DB1000-memory.dmp

Filesize
4KB

Download
memory/1176-3-0x00000000035B0000-0x00000000035B1000-memory.dmp

Filesize
4KB

Download
memory/1176-4-0x0000000002DB0000-0x0000000002DB1000-memory.dmp

Filesize
4KB

Download
memory/1176-19-0x0000000002DB0000-0x0000000002DB1000-memory.dmp

Filesize
4KB

Download
memory/1176-37-0x0000000002DB0000-0x0000000002DB1000-memory.dmp

Filesize
4KB

Download
memory/1176-97-0x0000000002DB0000-0x0000000002DB1000-memory.dmp

Filesize
4KB

Download