7d4cc059fd82b52011b02ba850ddf0ac14c06826bde03a13c68ddf3a5531a242

Resubmissions

08-10-2022 15:38

max time kernel
82s
max time network
49s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
08-10-2022 15:38

Target

MAYANPROPHECY.nfo
Size

7KB
MD5

75aa6ce98f8ddbd6d4eccf87dae1154b
SHA1

4ff19da23ce9a84e14d99a047c1d30bb0cae223c
SHA256

386cd822d58540231d594b67a35b3353ae98d3ce23a8f310fa0697d6d72d1036
SHA512

71a88e58427d16bd8ce48c1fec217bd9a6f38304e116a19b6a9af4637afa0b6ce5b7c192476c49b385fffd35845cf1e6ccd31c183c8605a4216683673d3aecec
SSDEEP

48:ZQh8XpnXGPHH1UlZlVmnd6UVl+7nd4HNtiketbrsk87b6jf8XI8K6gdDSEt+G:Z0ezlPVmnd1c7d4HkXu6jj8zgRSEtZ

Score

1^/10

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

msinfo32.exe

pid process

1848 msinfo32.exe

pid	process
1848	msinfo32.exe

C:\Windows\system32\msinfo32.exe
C:\Windows\system32\msinfo32.exe "C:\Users\Admin\AppData\Local\Temp\MAYANPROPHECY.nfo"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
PID:1848

memory/1848-54-0x000007FEFBCA1000-0x000007FEFBCA3000-memory.dmp

Filesize
8KB

Download