Analysis

  • max time kernel
    110s
  • max time network
    121s
  • platform
    windows10_x64
  • resource
    win10-en-20211014
  • submitted
    28-10-2021 13:04

General

  • Target

    nc.exe

  • Size

    27KB

  • MD5

    96ffbb3eb8bd80a57e50c729a758d747

  • SHA1

    5e08388fe9079c0d0c1da4b89885f5d9eeed1f52

  • SHA256

    e355a8decae502578e5bb649b4336b89b13c5daa07b2b23c6737989ecc0fa851

  • SHA512

    b74b6c6659e0298fd5a5d98aac3ed1a485880358be11a86c72951b7205a2c3863fffe880e55b74ce714cc37764c7206e2f7c1487ad0b2b7caa828ef4ba2897fa

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\nc.exe
    "C:\Users\Admin\AppData\Local\Temp\nc.exe"
    1⤵
      PID:3140

    Network

    • flag-us
      DNS
      time.windows.com
      Remote address:
      8.8.8.8:53
      Request
      time.windows.com
      IN A
      Response
      time.windows.com
      IN CNAME
      twc.trafficmanager.net
      twc.trafficmanager.net
      IN A
      20.101.57.9
    No results found
    • 8.8.8.8:53
      time.windows.com
      dns
      62 B
      114 B
      1
      1

      DNS Request

      time.windows.com

      DNS Response

      20.101.57.9

    • 20.101.57.9:123
      time.windows.com
      ntp
      76 B
      1

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.