Overview

overview

10

Static

static

Zoom_cm_fo...1_.exe

windows7_x64

1

Zoom_cm_fo...1_.exe

windows10_x64

10

Analysis

  • max time kernel
    91s
  • max time network
    93s
  • platform
    windows7_x64
  • resource
    win7v20210410
  • submitted
    02-07-2021 13:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Zoom_cm_fo42anktZ9vvrZo4_m3RykrZsuZIDMlOXw0hNRWjDNBGJx10tpj3Pb@RupXDM522QyX2VAW_k9dbd367244df9d51_.exe

  • Size

    122KB

  • MD5

    8caff4cc2912c52106d9056a7db5eb2d

  • SHA1

    eee8742ac37e85e9c9b8a1d22477f080485ad9f9

  • SHA256

    cfc5adfc61d1f34802ac65a474ace9ffe5007f859b2062b2297a1f047da96bda

  • SHA512

    d3ba58afa9dc30ef354dd6e126092b5e0ea33e753c0d081a2895054446b5e9b28d5a7efdcc2c80be47b4deaf5bf3a7c5de6f985abd55d98e048d674b0444b63f

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Zoom_cm_fo42anktZ9vvrZo4_m3RykrZsuZIDMlOXw0hNRWjDNBGJx10tpj3Pb@RupXDM522QyX2VAW_k9dbd367244df9d51_.exe
    "C:\Users\Admin\AppData\Local\Temp\Zoom_cm_fo42anktZ9vvrZo4_m3RykrZsuZIDMlOXw0hNRWjDNBGJx10tpj3Pb@RupXDM522QyX2VAW_k9dbd367244df9d51_.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:1864
    • C:\Users\Admin\AppData\Local\Temp\Zoom_cm_fo42anktZ9vvrZo4_m3RykrZsuZIDMlOXw0hNRWjDNBGJx10tpj3Pb@RupXDM522QyX2VAW_k9dbd367244df9d51_.exe
      "C:\Users\Admin\AppData\Local\Temp\Zoom_cm_fo42anktZ9vvrZo4_m3RykrZsuZIDMlOXw0hNRWjDNBGJx10tpj3Pb@RupXDM522QyX2VAW_k9dbd367244df9d51_.exe" /normal.priviledge
      2⤵
        PID:1568

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1864-59-0x0000000076A81000-0x0000000076A83000-memory.dmp

      Filesize

      8KB

      Download