20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a

Analysis

max time kernel
191s
max time network
193s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
11/10/2022, 09:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
Size

78KB
MD5

19290f18bafb360ce08d5224a78d6d52
SHA1

6343e7fe7f5059ebdc7562f08c75bff56ec7132c
SHA256

20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a
SHA512

7e0dc1851c13440d06e24d69b5b24c0cac0c776cb4cb92e1f687a8d250e1675b576f4e78e977d3979b9bf1d7eb12c234b67127e2e83995d770c0381d54813b48
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDz11FGOaeKG:lV2BZVPlFlnxClFvLLcA+sPDz1KG

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 16 IoCs

description	ioc	Process
File opened for modification	C:\Windows\win32dc\BattleField 1942(codes).exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\Quake3 + cdfix.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\Silent Hill 4(trainer).exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4(trainer).exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\Doom 3 cheat.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\BattleField 1942_cheat.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\BattleField 1942(codes).exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\Counter-Strike + trainer.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike + trainer.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\DAoC(cheat).exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File opened for modification	C:\Windows\win32dc\DAoC(cheat).exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File opened for modification	C:\Windows\win32dc\Doom 3 cheat.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File opened for modification	C:\Windows\win32dc\BattleField 1942_cheat.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\Silent Hill 4 codes.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File created	C:\Windows\win32dc\BattleField 1942 + trainer.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
File opened for modification	C:\Windows\win32dc\Quake3 + cdfix.exe	20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe

C:\Users\Admin\AppData\Local\Temp\20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe
"C:\Users\Admin\AppData\Local\Temp\20ff9020c88146acc6d17be1873ba18c898312f198596fc8bdc415eb37ca431a.exe"
1⤵
- Drops file in Windows directory
PID:4412

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads